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Commissioner for Patents 
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Alexandria, VA 22313-1450 

Dear Examiner: >y 
We declare as follows: 

1. We are the inventors of the subject patent application filed on August 13 ? 2001 
and referencing provisional application No. 60/225,796 filed Aug. 15, 2000 and provisional 
application No. 60/239 ; 0 19 filed Oct. 4, 2000. At the time the patent application was filed, 
we were employees of ULogon.com/ViaQuo Corporation which was subsequently combined 
with SiVault Corporation, the current assignee of the subject application. 

2. This Declaration is submitted to establish prior invention of the subject matter 
of the present patent application in the United States. 

3. Prior to the effective date of the reference Berson et al. June 19, 2000 (the 
filing date of the U.S. Patent No. 6,754,821 to Berson et al.) we conceived of our invention 
and diligently worked toward constructively reducing our invention to practice by filing U.S. 
Application No. 09/930,029 on August 14, 2001. 

4. Exhibit A (71 pages) includes a copy of the provisional patent application filed 
October 4. 2000 in the USPTO. As evidence a conception date prior to this filing date, pages 
3-15 and 17-55 refer back to June 28, 2000 while page 16 refers back to an even earlier date 
of May 20, 2000. 

5. Exhibit B (40 pages) includes a copy of a disclosure document prepared 
internally at ULogin/ViaQuo Corporation and dated May 20, 2000. This 
disclosure/presentation document contains essentially the same material as that filed in the 
provisional patent application in Exhibit A. In particular, page 1 in Exhibit B includes the 
identical figure as page 16 in Exhibit A with the common date of May 20, 2000 thus 
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providing a conception date at least as early as May 20, 2000. The rest of this document is 

also dated May 20, 2000 thus indicating a conception date at least as early as May 20, 2000. 

6. Following our conception prior to the critical date of June 19, 2000, we 
worked diligently with our Patent Attorney to prepare the provisional patent application filed 
on August 15, 2000, another provisional application filed October 4, 2000 and a non- 
provisional application filed August 14, 200 1 thereby constructively reducing the invention to 
practice. During this time period, the patent attorney prepared one or more drafts of the 
applications for our comments. With our comments, the patent attorney revised one or more 
portions of the application, claims and/or figures to accommodate our suggestions. 

7. At the time of preparing the content used in Exhibit A and Exhibit B prior to 
June 19, 2000, we had conceived of a method for providing cryptographic capabilities to a 
plurality of network users over a decentralized public network, the method comprising: (a) 
receiving a request for an access permission security profile on behalf of a network user; (b) 
authenticating the request; (c) creating the access permission security profile, to be used in 
forming a cryptographic key for enabling the network user to decrypt selected portions of an 
encrypted object and to encrypt selected portions of a plaintext object; and (d) securely 
transmitting the access permission security profile to the network user over the network 

8. We also had conceived of a method for controlling access to a secured system, 
the method comprising: (a) selecting one or more portions of the system to be secured; (b) 
creating one or more groups of system users, said groups defining which users are to be 
allowed access to which secured portions of the system; (c) establishing one or more access 
codes for each group; (d) assigning the access codes to the secured portions of the system, 
wherein each access code is adapted to be combined with other components to form a key for 
controlling access to one or more secured portions of the system, (e) securing the access 
codes; and (f) distributing over a decentralized public network the secured access codes to 
users of the system who are to be allowed access to one or more of the selected portions of 
the system. 

9. Additionally, we had conceived of a method for administering cryptographic 
capabilities over a decentralized public network to a plurality of network users, the method 
comprising: (a ) identifying one or more groups of network users for defining which users are 
to be provided with cryptographic capabilities; (b) creating a member account for each 
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network user in each group; (c) performing administrative tasks associated with maintaining 

the member accounts in a single database; (d) establishing one or more access codes for each 

group, wherein each access code is adapted to be combined with other components to form a 

cryptographic key; (e) creating one or more security profiles for each network user in each 

group, wherein each security profile is stored in the user's member account and contains at 

least one access code; (f) generating a member token relating to each security profile; (g) 

securing the security profiles and related member tokens; and (h) distributing the member 

tokens over the network to individual network users upon authenticated request and 

according to each individual user*s security profile. 

10. We further conceived of a centralized security management system for 
administering and distributing cryptographic capabilities over a decentralized public network, 
the system comprising: (a) a set of server systems; (b) a set of member domains, wherein 
each member domain is maintained on at least one of the server systems ; (c) a set of system 
maintenance tasks associated with maintaining the set of member domains: (d) one or more 
system administrators for performing the set of system maintenance tasks; (e) a set of 
members, wherein each member is associated with at least one member domain via a member 
account; (f) a set of member security profiles, wherein each security profile is uniquely 
associated with a member account and provides cryptographic capabilities to the member 
associated with the member account; (g) a set of administrative tasks associated with 
maintaining the set of member accounts; and (h) a set of domain administrators for 
performing the administrative tasks remotely over the network. 

11. We also conceived of a centralized security management system for 
distributing cryptographic capabilities to a plurality of network users over a decentralized 
public network, the system comprising: (a) a plurality of member tokens for providing 
cryptographic capabilities to authenticated users of the decentralized public network; (b) a set 
of server systems for managing the distribution of the member tokens; (c) means for 
requesting a member token from at least one server system; (d) a set of client systems, 
wherein each client system includes (i) means for receiving the requested member token, and 
(it) means for utilizing the cryptographic capabilities provided by said member token; and (e) 
means for securely distributing a requested member token from at least one server system to 
at least one client system over the decentralized public network. 
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14. All acts set forth herein and/or relied upon for the purpose of establishing 

invention prior to June 19, 2000 were carried out in the United States. 

15. John J. Yu, the co-inventor of this case, cannot be found and is unavailable to sign 
the declaration herein below. We have attempted to locate him numerous times but have not 
yet been able to locate him. Several individuals he previously worked with indicated that he 
may have left to live in China however we cannot be certain and were unable to obtain 
contact information. Consequently, under MPEP 715.04 1 (d) William B. Sweet will be 
signing on behalf of Mr. John J. Yu as he is clearly a party in interest and has personal 
knowledge of the invention. (Parties available to make an affidavit or declaration under 37 
CFR 1. 13 1 include the assignee or other party in interest when it is not possible to produce 
the affidavit or declaration of the inventor. Ex parte Foster, 1903 CD. 213, 105 O.G. 261 
(Comm'r Pat. 1903)) 

16. We declare that all statements made herein are of our own knowledge and that all 
statements made on information and belief are believed to be true; and further that these 
statements were made with the knowledge that willful false statements and the like so made 
are punishable by fine or imprisonment, or both, under Section 1001 of Title 18 of the United 
States Code, and that such willful false statements may jeopardize the validity of the 



application or any patent issued thereon. 




William B. Sweet 




Date_June 8, 2006 



William B. Sweet on behalf of 



John J. Yu 
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Our virtual pressure produce. ULOffafi Vstml EYcsenoe prtfbpt i» beucr io two wqc <^> alt of 
d»u $*<*k*k rojuirc a cikniptoce oCioftware be mstsUtf od tooOi a: remote and tatget 
ntcliaiKs to crtcr to warfi; «nd (b) aesofou&Ee Btoa l^piuxifisod upfroci r<jc bcttcra S%7 mi 

$l69keal (UIc^n'« ttrwca cosii on^y a Taw csflar* per mijaA ?o *K ri.*).. A kty «paW.lity of ihc 

UE^gon. prodDet is tfaa £1 oafly nads cte softwirt iii5tai]ettttttiruipete£d;aiiyl«eniec- 
coooectBd ooffiiarter nitli a brewer can be. a ffli£lh».IIw kIIowb "ib diem" syrani 
t& rei»3tslj cowoi ftitth largp* 3P(j moce vopUsilcaicd targa ajachbicjv ami cHecj a added 
dinrasUu of cdfiiy te fliB cOmmg *Sv^ped5,™ 

(Jflteitial castomRS fx ULogaa SErvicas. sad to»kl titbet oatseaaw CULcgoiKpowered Hafc oa 
ibelir ti'jt) or Ikouo ibocayublJlcy, It b BQtJ<^iO<i thu in &iaa> rudi^u ta*rJu^ Hcc&jJo^ Is Ql» 
CK&a^d &j$eoach. du: » podr caoDcdiam oe low bancMdifa among ihc variims copctired, At 
ptcsm. Willi fittte BCIUaa efTo* UUfiOcn has 3Biuptoitcahig:aTr^aH£^*ith»aISPio 
Aoairaaa and. another Id SlDsaporc^-BMlt of nixim wjq wl^uifcVlriiiatrremicestivtaesisa 
r«fi&pa.l of Ebeirbasfc servioej to ouer 4O(XO0C' C^bStribArs {&t$\-S2toc*Mm<r to ULoeon). 
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ULogOD Bushea Summary 



1 Web-based persoeal file rrattfer sail remote cp«alkms -venders <uRjjwi ( muads). 4 
fife dlwt wupetttors fix tf* low cod of Wqgcn'a- virtual prraeoee sffvioesL At ih^ mimsA, aB 
am Idcfci^fjUiHtiBte ocairol capability, bat u tritely thai fltey wiS evote to prorate h, No* 
pos&a* U1& secure vlnned awcrc fcawrs wtwill ftf&r It ttnukt^lfai (feoft carajpuiw vffl 
liiwnw or auEKFuicfrULcigESD virtual presence cervices. Mibmagli ttfij- may way wen license the 
&£fflrt30Rs$ slices. 

4, Wcfc based conferencing verdoB B»$fcem ucEimgsj (Wet**, PUenraieX *Ot«e are comjeti as 
for fehigh end of Llc-gdtf sVuhial Pte«nc:*«TYicc5. ftcne pouess the «cw% ivtvaffaxem 
Iffifisctogles w& irand to cf fen ft 5s unlikely tba) these companies wDl license <* outsource 
Ulx^QO virtual presanra *9»i<)!», ftlihough tatty may vary well luvm^ *e secure a«sa 4&ri»s. 
I doming sites picvtting bitaol coMent aaa wmicaLaarocej) flWacKboflid, Gkk2 Learn, 
tauvCTCCom, nigftdTbirfe, Decern, GUac Csraatuilicaiknfc Hungiy Minds, Istcsrfry TrjHmng, 
KoonU^laBsc Lotus, Ht;g, Ncf-LGaraaHs, Kcw Hanssss. tMhknt&c/tntan. Ptt&testfi, Sibq 
Seforoe, Sldnsofl, WiFace, SmsnPhitt. TcamStape, WBT S^iesmsi, ox). All cf fee«. 
o(x«yaDie» pwcuSal eoaciraia CreselterO pf XTUOfiOD SCfViCGili ]hcdaUnEEl«sarnbi£mark?s, 
especially toe seenrawrtyd Kcea mice. 

Te^mI*^ OrwlA Ptoplcseft, PwrJwsePn* VwtfcaiNcu »d Vlaria). Ail of tfteccotnpmtes 
maid 

QaandWasK, Clarity, C5idcLiter?^:vfc> Drama. Epjphioy, E^tit* lfaroi Lke Sp&sfons, iuteJte, 
« ; NetFCS* Ctays, Oraofc, Ptm&*wn> Rvwtf. Raioa, SaletUgji, StcijcL &rply Swrcfc. Tte 

f.* fta th, Votive. WefcrkJfca, efc.)> AUcTOtcw wtipaiiies *rcpKC*tlai coitorwra (reseller?) of 

(JLogCM service to ecstoncr or rwtms? retetknis&ip rea&M. 

^ T«tBcaog| htfestttiksi Oiotp, Coria, CyUs, cAUTY, ct^eOac Cop* EDS, ^socKeftfltoe 

^ Inc. FamreLicIc Ksoib^ioa Corp., IBM GSsl^l Service* ImtdcMi, fatopaift CommoMiicatioaj, 

' ' 1 Leaasg SKRloacom. NavtSi:c, Qtacte Bishass finTliwy q^p be, Qwea QberScHatiOB^ 

^ TofcsconfniiiBg, Tb c ^jZdio Or<rjp toe, CKiiRiltetwOrtras. and WcfJdTMb-ilogyScjTiees. 

AU !jf tb«e<Ct[ipaci£S arc pciential rcscHas -if ULC300 »evkcs id Utcir ccspectHe ASP maf ktits. 

t' Uef*»d Mania, Rayflicafi, X6c!re«il C^lHin Nmftrap CSnanmro, Ccflsai Etoittibp, 

P Hoghes, R^ytfctOD, Unl«4TccIinoJo^ Sjjtcraa/taral, Aerojet «c) 

* Uaiabesc o^D^ciwmr coxpaiNc} COradt. Sjtasc, SAP, PecpleSqft, fc^rw, TRW, ilnforraix. 

Allto ft Karailtoi, Detetce Tcuclv Ernst * Yacug, fltu.) 

* caFpar«Uox» with liu£p<Iaiatrac5 of toicieciual Propcrcy 
P^anraccuDcaJ—Abboti LaBs, Mi Lilly, Btj«r, Bristol Mjwn Squibb, CSba^Ge^ <5kw- 
Wdtome, Hcvrfifl, Xfexsr, Parfcrv-D^ri,, .PfJro-, Roc be, ScKcd^-Plouefc, StnifcKlijic 

* fniaranc^ooe^am^, wpcwally ttose to keatlcb cam (Atoa, HCtJa, Kxi^ Pennant^ 
LaidniarkHfisOrJicyc, Blue Crtte^lix SbeM^HicMaa, iWcndal H^Jdcttrt, cttO 

* 05 Govrranest AfflDCifiS rKpjarin* CKM sysicms, bat cuahlc id dtaain mffictecc smact 
C3.*ds (al present toe Oepftioeol of tbt total or ram* 10 million CKM 8«u» bsaj year— -arae 
OEthiS Is^rJ 
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HLqgsn Btiaaess Stonraazy 



fbert are a number of mtrtets for WUgoa iccfmotagy, art smc of fie but is jfiwwaxAcal dtgeujfjg. 
Tiiro p^ tuKnxical omnpanfcs we a* tatknig ie wtxiM life? » «w foe Isanti ft new way?tp ajfcaaDiMly 
improve (h«* ccntnainitttioas cag&iliitjr with cuatcmccs and tmflkpe*. Ilisjf wam to bfl.abfc uus&iht 
faterael tp dfrcwty c-)tramraica» kv— attl mcws CPU taubl Moamaim from— poo^ (jarUvijaliig ia 
drug iiaU* a; wdl a S chronic drug users. (They vill tbu mimnizc ttx tf adkioDjd rtfc of docwrs in 
wltoidg^^^iMSi^iiitonnatlofl) Tfi^y also want w~VBti<r<feB&9 to a8S6£6<#eftf»tgfi a "pin- 
d^pcnslH£ B Ljitenrei appliance. They m already faciUbig the btcwet appftanc* awl ate itaarpcd at tf* 
.pwibicm of fecw to siato sure sbe n£bt mftaudott gas to Ite righi peopte* whfl& jtauiraaetfJSly 
AtfrafcCtig, Utti ft urtHr't get to the wn»E peqpte, Tfoey aisa seed to b* js to stnn^Iy ayifcemfcnc tittir 
users, 2$ well aa bfcracl widi thcm^Hj (toi* fc^ptrc-r systems. They «c both very extiloO about the 
Ula^on awy. HLUgDD service* would prcwideft&MomngbttGfals: 
t Rapid hnptesKnlitkcD aid scalability 

2. SCR^tl ft* id legacy netrowfc fcopotogics and rajuxstfe itimiructate iavrefcr.caE 

3. &r&tjWc$bcrrooicdd3?py^ 

4 rmprowed ttnjngfcpui, eJiimiadoa ofKOurity trafQeaecks sod single points of ftjiae 

^ Tbe iod beacfli is Ast tzsisig tat* aw $crvict$, a pfcarmKaiiteal ceraf&afij ess increase ft&prafits an flidr 

* drag product tB.es by about 544 miTIftn cadi (fipr rot of out ctissoiKis wiffi i 00 drug lines, fr&r cratahta 

:Z W $4d ^ijlltan.> — A gca3 thai can eaary Justify tfce<?ws of fi»e Ulxgpa tavtea. 

k But fSbarx^EOJtical compagfle ars ttOi an iscUatfid ea*c. Most major fctpoiaK wdb ctej wiU tMd a way to 

ii? scate flisi' wawcikE to tea* or hanAtd? o<" nJlticsj >f cuAtuaie^ in She fnnirc, -s^iite crcuJng iEi ro*ld» 

^ W« «i& aggressively ^eWng feedback fr<m*t4jicty of cnstcmaK thai vn ttiak wiAJ bccefii a pcai dpal 
r/j froen ufcai wtprtmd*. Tbu4, tf» pinxasiaa of oar require cT tbe tnic market potcuial win tacns4<j m<«r 

" time, teftspeciiw of this, w$ hive auric ccasemfiw rffvcom? am; marte shs% wsuii^O^i 1bat stiff 

dcnsosmiat&lltc Cugepoloiiiial we befiew we can ac&teve. 

i± • W« bsStw tfac Agp CApptlcatsai Savico ProviJcf) jtartti will repreieai a si5&ificnit reseller 

|f| biBc for otirtixJinolOiy at ttehigb eod, esperaafiy f^Sccure Vfrtu&l Access, ^a^tas 

[2 * We bcbcvQ -bad is nnoih^r maskci undent cotulst^g of coaqKud^ i&k mod ULcgoo 

tsrviccs to cQihlo ot Cflhwioe liic dlczzi idling of i3mb: custoni products or t«ivkes; uiia^ &a ASP* 
l^c medet t Ib <2tec; ASPS sell font) Jtw jafoffrafltim-based % redacts <Jf Ktri&cs over the 
Jsnms,. Trfwreas &e Direct Coipomt «gcieat ULo^aa bdL^ra ft oat nacre uses wfib-cen&ic 
SBTvicss to sell mtt iradiihual products {swA at be&M tare, goElware. &vgs md disnncc 
odLrcaiitsi). A3ii.oTog& we havo not fotniC smmiary martct researcb caca, aa [Ms mmi segpeat a. 
preseat, w bctfcvs Sr U a. laaa as ta*g£ aa fee ASP scgnenL At exaaipiea, ITC TBporn ihe, 

foDowiag maj'cef size sstlmstti for aggfte&txte* that lit Qnis dcfinUea; 

* IIS. Corporate dtece cduc&iioQ retch S7J taXLon by 2003; 

* WW Infpfwwa Dcctcaiogy u-jriDLi^ A cOu^tiLjii wiB isaeSa CQIisa bySOOJ.; 

* Sflsftwaw lea import msrltet wBI rt£ch..$42 Jjlllfoa 6y 20Q3; 
4 ffawttX fcth aippan will ieacH $4^ tsltioa by 2QC3 

* We brieve the BP Qslma Strvlcc ftowdc^ martel vJU wpicsait a <3gi J irwanI reselEer beae for 
ogt twftwJlo^ at tbe low «4 *S|W!Ciidly VmiEd Piwacc skvIccs teat th^- £3d rffer c 
^ankuH servioes Iscmaent2l a Orcir basis coonectrvity services. 

♦ We ajnune tiw ^eS}CKM"-t>flscd wairp ac?o» actviM can be wfctt as a ptraiagc: or do valys 
Uf an /s5P isrrtce, wli^ that valua itaay ^raenl epprcxiziittclr llv; peeo^t of dw total Tako of 
an AS* iiaufloaeiiasira. <Tbe aiismath« is w i t for a taufliiTr fisehea t) 
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DLopo OiifflBKC Summary 



* WcfccftdvetitttYln&alftoaaxesca^^ 
SSAncoh, &?«afr}g irpoafe foams «t «s&l 

+ Wo Assume. 6% ASP martest adoption of CKM id two yeais* vnilh liKle.<Ereot computation (or vveb 
btecl CKM ttund due » CKM'* acwtuas attf titt- fett. lit it ao Ont eUt is CHttcrtLy 
centra pto; a sreb-bwotJ CKM aOtateg. WebCKM shooM sell fw SJSLaraoctfitow. 

« ?c usaine s «tow aJqpdoa rate for the ^^fctfco portion of «ix nrtual pretence 0««3Cijiii?) 
pctritKts> due to bmdwM& ftmluikm of the "bit milcT (cnLjr Jk of hema lave Jii^i fewrfwutth 
eoxijKtticos) By 2003 cfcis pofclcrm will have cased wbwwtiiAly due ta fbt rapid growth ia hi$h 
basftridSi hiernst caraectiaas (IDC forecasts Aral 33% of IsttnuA-oonaected bones will bare 
lilgh ihmflwidth pytmccicoin* by Qicn). 

• Ai jrtswiE, pre cos &55Cir* any GcvcnnaoGt CKM bwlness, bill tbat tssamptoa ts 
dia^i** ttydly due m a p*o Jnctian bcaLtawxfciji smart card &vat lability. 

Apptkztfoa St* vita Pftyridtr martei ttoctberf. IDC projects i$# ASP tcvettties wtii be $296 miilk*, 
cUmhitva » S?-S Iffllko fcy 2BW (*92fc Dsteqtiert proj&Oi 300& A£J? pctkew ta be 122.7 t>i£io» 

(a 91*23 CAOK) , ff wc assume the tms vaioc of the rasrkcl i* Era A\c*gp betwtto UiJSfc two-pfOj«C5Cn6» a 
ihkd i« cf atfrtttr! can be cntitwt: 

Tfcga&£tn&} acctMit lift sfeove lainjBjpr ic*s, tyftfcdi&ce. cm adiifcre ti excen of a S 100 miEoa/ycar 

AS?Jftll3tCro«h(lDC) RweM» fa Litem of (Mian 

1938 IW1 2192 WW 8<9W 

TDftlSttwff^ 6 8» fl £3 6 1.2*5 $ 2,4*4 S * V« 9£« 

5t* 

:~ Qfgini ijoe ibis 9su mni ?u« ran im. ues 

*•* Ku&tania ! 318 $ 755 S 1.422 I 2.7VT * » 9777 8*7"* 

rij fiwft s $ mi tm $ ijwi * *77fl a 7,«i 



1S99 EtN 2001 IMt 333- ZIH USS 

r^ais^Hbtg s a I2n s i&> t s ie.osd S3U93 cm 

tiartcs wkhh ihicc years,. Ttcsc tanmptiocj ice conscrvaiiYO hAmd comDcBonog U» vaiii». arvclfy md 
lack oJac«puibie ateoaiivca to CKV, vctuchfa du crown jewd of ihftULQaoo^rviM cficrita. 

iU.Tcchnctogy 

ULcgoj]£QmbQ£ dcvdqnedivo iaoovatrw ustmoioaits w-provufe Virmai fr<s»c« etrvicu. 

I. Tho Eir?t k ato HTTF? -based eplificatiOB itsuBLCfr &ad KCftt ttttloa setup i-ystisui 
perKt^w) wttiftTt rue ^nitmie remos hoa. [TfPftP iflArtmft on UBL maifiits. This is a 
tty t^hfickiir ih« icfiahtes tie can rtl iccaikm for user autgeadcatioo and canseclkiss profiles, ft 
ilsifillflcs ccetEias a virtual tccwcckow tbt Interact fbi all bdiTOtato one ^wtKeaffi (reducing 

1 'Ttb ttzmA rachntfoeY & ■» fure web -tased ^fttnote operaitoa and ccntrd ciiam »d sovct system 

thai ailgwi £w ottT to ianit3tly OzjCCnltC appliCAti£«as t tK ttkdf rfc«ilOf>, JCd ^Asrai files wltbffllE 

h&vcio dowtkihl h svcai die LuantL B. b a *in cl«rt rjmrinj Tvi&ji as; Uvwkt einii 
Mlcrood Ii^smci Esptorcro* Nctjcqjc Nav^^atO:. 

Audki/VitUa. ULogoc will buitd Its wn applxation sbjricg aad IxytwatJ chaidqg tucctiooj CD top ofits 
Pcekxl rtnxix costrcd (UodtouUt; ivKliio (be next tixrccmtMUia. Wc wuo p l a arrfng or cvalu£n)»s 
RXUc^rfdcc ccri(»ology tocrpc? wt6 4 c Tt?w of' scfcObg Gte be^ oncfcrOci fuiuifi itittflitflvity services. 
Hovc3cr T ipven (Ke csdhtuiisslic B c cp pii o o we ace »o wexpcrwseiiis over WctCKM iA our talis wirlfc 
poMal cuUciacrs, tto iDtftradiro auCio add rk3eosor«iccs wtll &c put <mhocd statas mull (be Sccurer 
ViiUE*JA»«f C^«bCSCM^s»vt»&ii^(brbaa»^ 

thapo%Bdal foe andio sad. video oer vices — and ihz ijnfosX Cfccy ntty hive on cur rttouws — acd mate s 
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Illegal &Miiifeit,Sem!iBn'. 



dec&ttn aoKMifcyjly. (Our ori&oaJ pita vu to ctxcta 3 vw&k Kcbnotogy fczi ficiairiadcatty nduc« tie 
goslll? ofJiws iadlcMteo tfgasl, d^jeadliis «poa the Interne; tandwkJEb ratfablc to ifce user's Qim 
Qee cwIoq ej. :p license- A?, spjjrqpriw wbadogy drcsn an wisiiflg v«idor SM& A3 C£Set*fc fWfticD 
Rues Software) and tSiea dttjgu -and bjiW aurora special tedruology after gjtci££ market experbnee utf 
a cusexner bate. It is exported ib&t DSL or catfc mvtema will ddivcr aificxLt bandwidth to provin ce e 
or tvro iWMiiiMy t^Mtte^wiodows ^sanxcg ■* ttKJO fracneg per wwntf tii^h qeettiy swncy 

feccre KM Access 

To patids Sac-tus Visual Access, htu new Kc&udogfss uiJL be Deeded: blomttri-c suibeaUcarfofl a&d 
CowtmcS*^. Key Manoganeo, 

KiorKtrtc AulhtntiratiorL A bot tetfuxitogy called BicH> is ww available ft&t rec©j»nizE5 people 
through face* voice, and Jajv movcncai ustag a rC-&asod cam era and micsophoflc. To amhatticalc 
tbemwivesv u- 1 **? loci ni die caniwa wid spaik ■ pre-re^iitcjed "p2?s-phrajc r detect by a nxropKione. A 
Static pitfare rtltoe pervon's face is Ksfcfcn add prtoSfed la reCogaize fecial clirtcKxiiffcs, rtiairrt ft a 
regis Ltttd tecpiaic cf ih& £tr»B ,, s fee* taken during cmoftaaem. In ltk Aishioii, the jefswj's -rotco 
spcakjig aie p3$$rp&m$e is ska JraiKfonced ictD a [GEtrjilate and e£>aji*q3 tpttte fcfircflitocflt vcjiica, a$ arfe 
tba !Lp tncvftiifinis speaking be pasfr-ptass. Tttiz tedialggy anews cunoraecs io -seLic* ccmtUaticni from 
tfxe& iiflfcrcnt mddes fif bsftntetric 4d(EKiits«UiM. Ote Z&Otte eoaj be uted for lc* aSiitfiXC applies E£J»*; 
two izadss may be usd fox iigbcr sssvaooc applKXiwnj,. aid for sftsafiocs where oac of toe nodes Js sot 
opcr&iinjg property due tc a .Aingc la tsclgl or >ofce cbarscierfstlcs. All A roe can be repaired foe the 
higfciM Assuiiito Ob6 big Ach'iitag& $1* ftfc taciflology ii (be cat cf car>iUmtat Etoplc can 

be cai&lletl OniiiaJfy rc£sterwO «a»IIv <te iKteracL stoce tfw daEaewflstf u aonnWy vwJ b> iw 
□ seme Ok emk oicj ooib^GK di^trf authcsdatMj* tcehgolc^. Poojyto c»a b$ to^iewflsd live o«f 
fw U» tetnxA. arid cao ermi fcow vp mer tJrtv«r's Fic«£>s« erpa«portt: thA camera lot picture ID ptii|io&«. 

; jj CrasUucCke Kej Manqaemcil (CKM>- ?bo cwwuting iidustry i-j a Irillica JO.W! vTOg^b ct 

J» ; comptnere, aenntte aod »<tiwsic cswy year $o i&m wcparatipns m $>ymmn fgwu* m 

4 roii&w sad procoss csaporact iuftusituoa of od&IsdjgJ or iottbw. Ttday, CaiF$4aifcS wlihlag tfr Oli^^aK to 

a complete <kctr ode cadsieaw face a major lwdte: fcow to «i*e th^r men valuable bfoaeaioa *vaiEaWft 
tT 1 ! ta Hnpla$£6& psiuutrs. ctisu>m£» »d supplkw— vdi& cbe associated audit trails, of rwpaasittUiy aid 
;: cMw^afcilh^^lite casnrlog cccJi c^nsdoicwry -JBSy ub&os #ia[ rte-T w pimped y «u&Qrtn4 w, 

q Modem erypttifrsphr can. provide answera to the problems of tafQrmaCion priv-fitfy, u^j fejUUtfi-Cdftoo, aJld 

,-r; user oca-rtpudiKJOfv bm Jt doesn't answ questkr sboti^d tilts person's eop&i Tor a sfixiffc ptew cf 

n Infontaikm bi: gr^aicd? Kuw can pucapanJis. pm flitai vidua^fe itftdlnxual pi'j^atjr (L« liictoci to wOo: 

io aaii bigger levels of poxijefl vky off ttU asw servlees; wittiotitt rist of less, inappropriate use, or 
emban-assmsor? 

R«estLy. au -degzem srfuiioa was brwajwd to sohw this pro&tem. Tt>c soltttbD is c&ted Cd£sawslv& Ke? 

4 Oecoari!a*d optrallHa. CSM tvUHti&nZl Ac secMiiy pt&KtilD^ by iiiub$ ascrtiJa/haff a^n 
«t ef«*rodia<iaJfc-tkai «wwl iht <r«Uwi of « 4«e» » «aa?ypttd bfismal« obtem on the »«wart 
I& a CXM tystsm dl otfocn^^cODtest sits tte 

pcnt«skias a»ir. tbc user* j crcdcnliaJ^ profile, he/she cm cFeaSe^^caaRnneTtbcinfb^ Knot; 
stelaflornwdon 1j sEmydyBjeaiiteilMS ?wt?aBR. ThffCKM fwe&pbcw is "wlxto tin data, act tbe< 



fbc^gEsiiied objett ascldtecUr^. CKM allows dvliTrng nfotnstxiaGla into ttatlkr !iA*ai catted 
o^juc-ts. la MfcrtKuft O^fxtv fui eiauipSe^ ajj/tftiaj HtdL-uan be scicci&d Cft» to wte wio i »-c^ratc 
c^jWL Eac& fiyca b war^^fWBSttfe^l«i«d C«nar^led) widi i*p owd Bnijue wcddig bey, 
•whiph ia <mty imlrt*aWftifJ*rM"irKl) vn a wi of creflcmU\ teyc prt-asnl^eri « CiMime the ctyeci Is 
cica:«d Objects Euybecuncafced ^tdibia ofc^cca ldJ the vhale ofcJect'Odented sff>ciu»«ii easily 
nap to Ae way it whi'ii irfonndiou sfioUd ideally "be sfcired wiftin an OtESSiiza^sa, Stocet b-adlticii4i 
putRp k&y Enfravinictniie (PW) system? csa typiiaQy acly encrypt or dttxypt a eooti^U TtJe, IhtC 
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tiLoaoa ButSntBi SnnaMv 



* ShuMferifaetf c*«Wfc| ffrrtK-sHw^, CKM: cr&Jraitefcaltow'tt&d. witna: Kaftforfeo aiocsa to data, 
otjectt ttatcaa b: sulssee of a sirgle flic, document, pkttira, or database vtew, CjjdfiatiiU jrfcpfe- 
dsflncd ly* autfwrtiy. anJ Ac cndaiia! jubsets attuned to «ci us£i -gnashed *« 
disftSmtEi and jmaintfliaed by a workgroup tAniaistrDlor. Gredeatalj v-c aococd t>bctf* cxae tad 
COTume tftfortniioa ice since aj objects are ditfidlf tigced by the ertarois. dues ia a certified audit 
UdL trf nL mfomniwi creaiEd vtfcfc the iysiem.Tfcf* ststfarttwd niodwJira fw dcfi«&t aiul 
mnjiilainQg crecfcaiiaJa brtags s nry pc^crfcl, yet easy to roatafam -way it zsdg&sg, enforcing and 

Tfe (ww CKM lectaol^gy ™pl<nx*wiioa rt!je*\pon act smarter pos««iiig t special CXMoabled 
U&tf t card, wfck3> ilotdA tt£ lllAdkWs cftdetttia& ctcij^tiou it-tys, ihc required fcjpto ttcuia? 
procorols tecurdy. -QEhej CKfctoabkd software isides oi the detfciop P sxti <xtfiitts « iht pfag-m 
oodaJes iHai enable ihe- apptcaUoo tf crafemlis a top of noma! cfeshofi applfcadaaj {e^. ( Micrracft 
OfTffrl » w^l as Swcsayptluj/dwoTXioQ ■opendwis v> Iw^cJock, comeoi sad &gUs!& stgstarity fte 
Gonial. 

GairrtMly, the US PlMttl Sttvies it J-i thi early ttagt* Of diplffybg & n&Vr OOf-bittd iCCwW slfiCtfOIlk 

creati iySKm (code nnae "NstPosiXtftLfy") to cesmjaaies thai rqpm mswlfftEiy daaa to selected federal 
ft&onciej. TECSEC, lax &» inventor of CKM, ii ^-wpcusiblc (or buHSats tfc« CKM desktop and 
atJn0i;[?Eiaflu& soffwuc, sad OjpTEC Systara (cte cw^wy Ftam teas* wuJ IMU 5«ro previously 

helped to foacd) ii wath^ in pnlnfiiib^i with TOCSEC to supply tixuuatl ci«h fiizt the USES tequLca. 

TbfOMSl tHii ne* ocnified cmsU jcrvio; 4 afpe.^aice seeding majdwocy diti as a Rxfcal i£cscy wculd 
(b so via lie Interna villi flis aid cf an CSP3 saur: card. Ail at 0i2» dau craasnissioss czn ate place 
aw tfce IntffBci ai pisces of cfexrwik roalB— ^uLcklj, tacxperijlvtly. &od 3«ouEdy t Tte fusi maira 
«F5lo*ncn for .twioc vf 1 1 bp Ihe RS^ thr Sort a! SecuH AdnMrinttoi «wl tfo> Hcufih Ca« Rm odup 

; ^ aijCDCies vfiflicfiow ovenfne, (The iaomil USPS fcrecam b 100 mi&ioti rcera ovw a 5-yeai -poiofl^ 

Inleg-atiifi BioID aad CKM. ULcgQQ pla»9 tp atlqpt Mio CKM tegtmotogy to 9 w$-i$Qtri& model 
CW&VCKM!') till uiii J w<l> Msf«i4fi«iiS1 fbr Olti ot*r, tLb5l 0>ji tins d&iiitt iacds^f cptfiticfl* 
net rt$a» atdJfftcird rti<ter(btf ooulsd usity operate iviifi xmtr oirtk sud M2di» i f d«sii-ad>, tetrad 
of 2cc3tbu wscr'x CKM profile Otcp ud ctedcirial:} cn a smvi cad throigh a jman caul rtsiw Wvcr. 

^ the draktcp CKM 5&fiw<rro pcoqsaci tb? metoberV ^oJHo ox ^ wd!> « truer scoatuil msiDCaiim) ae a 

^ ULosooxom wb lit t "Sills provide lower esses £c^> $5-12AnaBti fcjtcad of 5125-5 L50 op ftosfr lipid 
- 3do?tjoa. m&b c&nveQEeace, end better se&tfRy aid mafcLEUy at usen Catsuiu^ tfe EioID 

!- sumcwitstioc). it ii^o L^ouim (he a-raacr &attiy nam (sue uk £^enmea:i iasUt* uftaac hixtud of 
if! scn&ftisg ym know (a Ft^ zod. sarrcibmg you have (a «cnad c* t& WcoClCM ma aotactiiKg ytm too* 
q <t PIN) asi &csaediia{ yo^ dff (a i&i omsa*? mAa*oraaisffl>. 

I- CKM Is an ajlasswa tectaoJo^y ia tt* oommercfc, aoctor <3ue to to rcJaivc ffcsmas w4 TECSEC't 
Ciutoct focus m govern nacw oston-rs. and applxgHott. Ilowc^tx. ULogcm sees CKM as a tectaolcs? 
enable* for may coipof ate caaaroew irttb Iwje wraber* of people aeedJo^ c»jr dEfltaeRtfued seres* ito 
mlficw of paxes of iarornatioo. tfcii^ bkmattic eaptoycea, custom. $upp(i«f9. 3»<1 

otfwc on be. eai] !y ud pcntivclj auOadlicaud to Ci& ULq^o* ceotu] site, wb ich *v9) poss&a afl of tto 
mdetEiiais cewssary for otcm to access or create lbs emmt tfestreft 

l. liffornadOT cpwtors can create tolsaiecnal :propcrty ccattnt bw* wrypt J: in otgert ©npepfiegs 
foe ctw vpted stonge ca locaBJCC-accessiilB server OaU the people wbD^osnu the 
spjprepiiiH&ejcOfiWvas ca UicULoaan w^> *t» wiii 6e jfcfte n> access that content-and 
fsyniKitof etMrqaiml feci (If any) can be doc of the retired crs<Jeinial!. 

1 CocporxezdiBiir^mcaAJs^aiid^ 

ercdspwiwd ia oath tttmb&r's toOunl il (IiS ULogOa OfsCral iltX 

tmspnx bfxmitkiD vii ULogon factlitiit cI}id6> Tfaii ray, apirsoc's paiticipaiicft in tc 
pxtss canbft Mccrded sa»d cfcHifitd &i oeh of 1D& pwoeu, «&voa d^ixciiiall^ ud 
razteved s any t-c*m In to to jfeld as audit urail ef a petsos^ vort siady. or ucsvmptfoi 
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ULagce Bus&cts Smamary 



Wjib *><? frioMtrte «Ai'J^j*«ctlwi ami CKM bosctf dgwd mi cxi'gry£T£>& J cfaraexlcc? o'^Jows, wiporasiOTS 
isd ictf totricas wflifcfve subMsmlatty ttaa comrd of the wsauKe- nunsgemat process. Ana ike ads tag 
tKxJgc&Qdge oT clearcole- art paser-fcased swarhy processes. 

IV, Egress Strategy 

Al pffisrat, ULegcu aiticlpatei crealig wvmsjpi product kt*Vx gTc^dcp that fc wd offcr a several 
major appL'ciifcra :marteB»iKfilita| fiKwchaoiicJs of tfj^fcudon, as stwiwi below: 

Channels 

Tfeetaologfes 



F:om fluitomtr £fld panncr ccoocts sc far, ULogoa fissceLvcd avcry^nr^iisticrwpcrascw'iiic- vtskm 
cfpti^^aswpetWlTe^'ChaiweJfai csrtug people -«xi isU^$\QaawfottoniM.Kawtv^ 
corapany bas not bad exn^b. doe noflneytD pMptrfy cxplorcei&er cEk desired phasitg etf tte 
dcvdcpccca <jf lmtreetivfiy and sacun EcccaactpitdMw onito<rae trad, oc itemov Bpprqpria& 
(Ustntutiea dumwls on tte 06a. MwedevelopnflMM and murteitig nooujre wHfc*ol»c*p<y'ide$w 
mtdmland fha i titers ociitae between technokgta (oapabllMes) aocf thronste rfnuv attrve. 



lbs tttiapaffilbttiiiest models for ULagoc srab&cd upon oatiedhij) etdwt fircalhJy fees far itffuuu 
>J5 ctajsc* of wtb-bw&i seaMce* ias„ ISPs & corporate cuuaaenX ar a jwceomse of Ac fet charged to the 

i: 4 Vtoaal Pnwuc*— ltanat& Ctnuot It li mtkipucd That a re-abca-ed virui) prestsoc wnerncr 

O uculd between $J8 aid 58J0D pct sim^ 

cosis StfUfetti, PCA^sAafcessi* SRQbuOv mui sppftwfcnaKJj 5D£ of tost jwwwc (SC_5O-^.0O) 
wcaLtg r ULop», acd &c balasrc jetos to to "write (c>£ f #3 (Tw? gur l$P a^wancr*. 

|n JffiticiWW tlteSerwtt^ j^ngtjti^on beluea SI and S150Aiicr/oDootii.> 

j- trjgriffportstkm— foa &fl£Ddi*£ a irflaing ar a class viaiJis Imcae*—^ lha ability a> cUcr bctta 

service* fjCft fi$ tficoring *#J iccbilcal scppqrt, mail? thjrf vtrtozl Ltj jeraaMiy basa Tsoefe bigger value 
to tbo tost (b*n nemott> oocuo]. D5.^on amicipjtftfi a meiibly :8sft fram u»n cf betffc&s S5aidS30 
per nKQ4 : ,^ili S3- St 5 going to ULofcn, asd ^efia3io« ISi\ s^nems Iasgracrj and 

JcteocdWiy). 

* S*c(w< VErtoal Ac<c«sa. TECSJ^C is cwrau)j<Jiafgfai3 $U9/scu for CKM, implennBttcd b 4 £60- 

web-based sys&si. Tbc-ctitoiKr ^arjst also buy a imflrt card saA isader foe aao^e: $50. tTtafcitt 
webu iBirfD. ii wi£l con uoha'&Ofaea. Thoie rumbas are Bubfect to Ascoaot$ Tor ?er»c vrfuino 
cwiioaron, erjt3 en go* a isw w Si 00- lKWeti for very i«E£« cusiomes$ «rtoirt gczeniraaa agodst 
aid lsrse mporaionL Uto$o& ^r^a^a idargUg tewsi $5 and 512 per user ixr GK^tSi, vA& a 
rcya»y g<!lng; w ]tw*h CS£C a?J !3»e W&nwcte wtter (DCS) <rf spproiiraaCBrjr Mft . This wuufcl 
fir^g til D:iwec4i loULagcsL 

♦ AUcfm^roM&ddl AMooaii wly, & petfogc deal fee Appfica£ioa Service rxovnko nod CiMeoc 
icOTiag complies woalc cbarfie i ?t of 6e serrff» foa reDcc\w3 (eg, 5%), 
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ULofpa Bnginsss Summfg^ - ^ 



V. CurnentExcitbigOpportuni^es 

ULogra his cfily fcel actively jdlin* toe IRcm reran lor [be lasi three rnxKha— ittrt ihtx »*h rdv 
Q»5 pf^a (febij at of ftp ^Uig. Howew,^ 

* Virtual henna. ULcgon has ar^y^d awoyftoia n»a ofthi fesge US, ISPs tecBuse we were afrfcd 
to n« rcaily to tuno Ehom oa. Ifce fear was iTwe wnaa thcmoa btfero robad ihc apahifiiy to 
cWiwWcfcQQvl, lb oy .night go^sewJicreto atoato it. Wt focused; imaatf mi a fiiudl munberof 
ows«m ;S£s tb* woe tot taacl> to ciffi«- w"v*- wfcb us, w go ancucd u$ ft Wo? fcccaaE wo 
accfed la wafcfo us jo deliver. Two at tomo- Highway Oae tatrafl*-:tOO,<X» subscribers: ttft 
Sarftib (Skgapcre-^^OCXOOQ fiiitacrihm;} -were very hHwesied a our story an& After viewta^* adena 
<ii the vtiwl presence capability unraraediately Izpai fEcosslag £jping aaay virtual pwwwe service* 
as a part <if their ISP tenrioe to &Sr customers. Both ere mm about to ktfn bCtttaSliflg (rf CiepcdiKt 
ami both at} eager io offc WcbCjCM when it becwasas ftviflablt Wg believe wc cao repflcac this 
ttperittnDMtffh many of di£ otber 2SG0 Bfcs AcoutaSthoworW. 

Ac^corap^ffi-JMiriirltCanis, Trayfler-fiff*iDterci«dljk taiag Virtual Ptasenw to cbbMc 
ffi&canpbQees to access Ia*ge aid scphitiicatfia computer evflsnffi Apoa iaialJcr, cheaper "iMq ^ticar 
ijaswifc HaaJnsfcCaids, *Wcto Das abdot 800 acris t$ oid«over aJuudredimiaMi pieccc c-f artwrtr^ 
ctimtfy ti« to sqptfy -each art isl udib a 7qy scptliiiliaEfid Ma?taKrcSi wrapottnY&i brg* a±nBrics 
accj cornea softwaxi. Tfiey are also ww&rj ftnt Tbeii anwoflt library teiitg IotfwJ by fcdr 
«GODpatiioiu Tfcey warn fc fee «*fc u> hiie artists But OBpen^hMariftic remote to ffliir office 
location*. Ihey ceu5d.«t up a roara full of nffeasfictfed Macimo* xraeMECS to a«core Kxatistt, and 
ihoi arte* (beii fifiw artists i« reapttfy «atp(fl ihasc laacfeiow On a tmbtfliarc bajlj JOram tfieil tomes; 
ralUg tefenpnthM fltwiBjflien! 99 wie^plaffeto*, Thej will ifjja kmc fcww Cffpcasfa coapmei 
sj^ttsiiv p? fewy, cud «d mci mate artists eroaai th^noEM. By runjlua &fT fi3« 63«t«Dfie cipebi Jtttea 
awl astus WifcCKH Aw can keep beiWCMUfOl (rtfr Ineir arrworic Jibr»y. T^^ris u flcbitecttnl 
ttesi^D cwipmty ffla waB Co aHcwrf«a£n teaa*co acccis luge CAD fife* frcra itt arcacd ibe 
iStantry wifiiout hav^g to n»vc ite flfcft and wtay abemi sy^chioi! iziag «nSow. Wo cfick (heremay 
be many cktx *t*cb remoc»«>iit[^^-«o]x^kxi[ai^^ in fre 

p^oei— particularly ii> ftsn»r& wtfpad apfdioooot 
♦ S»ur« VrttiaJ Present*. A^lfr back Tncm Rcascl opened a dismicl m -Spdwlieadquietcrs itirangi 
6cao» nwied frtoda m Kaa»*sGQr aodpitolj^ & fcwS^niamid-lCTCS pe&pl6 00 to ram. To oar 
jorprisCs lie gai a tijWy esi&aa«icieo®tifli and nw, tBronjgJi ajreticwii eomifiSfcii bewtsi w» 

caly nJW>. IMjis botfisoQtf bad c*ws a is. good bccaise print's mew IQK servfct~« 
ilKsiibite Owrioad. 1 megabits, t^ioad, A ph^ liw and 75Dmiaa« 6f ]q* E dbtascw, foe city 
3 WOfeianilt--is flwfe- prarfereneu wtapto to tEk-jiratrtet s6am my Sra fi»ltk« <tf AT3tT. T4fy 
mccmwxij raUBcg 5t*«t in ScaslU^. DaiR« sod Kaasas City. Ofivbusly, virtu*! pr^ccoe «ervkcs £*<»m 
tlii£CB Jnxcc scfTict t j btmdte ima Kjn.Howmw, (hey see wu pfamcd WebCKM CS^cnrc 
Vir£ii$i Acc«$] as fcersairy liigjDffcrcialacrfof WW, tmcttiai wwi!d2HKal to fioisaniftstfifHH to 
mafiEim sUed cccao panics wl» wax to get Mg c«2i?aiJy Seciiriiy capability al soull company prices, it 
is tad because if ia i* impcrtitrt ecc«gh ig item anj can't tetivtt id liiBC, ftity may Cry to take ibc 
Ids* tad hnptmm it some otficf way. 

Aaatha-tlraMai ^|wonii*ay haft r^cwpoppwJ^jp vi* Fxanz's peprocal rdatiaoslt^a Hrom Bcrtclsinjm 
{GtmsRft, coo of tbc top ISEftwS&icainpeniw la Barapc J)«diiig wcB (WT IOC mjlira casfcjmcr 
tMSfLfe, Ttey sre urnrcstcd m both VirtUAl ft*«4iice and Secure Ylrmal A$oe» senritts. 

ULOgoB. pim to Ilccise the C KM %ch&oi^gy aftd. tfilt# it Co th^coramercki marfcet « »a ASP la inrc.ot 
i&ikc So F*r, ivr: ire ibc ondy company with thfc idea (flquivaQi&ut tv Ycrttrgift ptaa ib laieRSA 
putBc key tcctoolcgy aa jfeart a@a, wttci £ov people usde^ood tba inrpia-potMlis! <jf FKS. Oct 
Oripai] wastDtgi* CKM to tkseomni£reu] nsstet « a ^eb-baied struioe, wble TECSBC, lbs 
iflvawai cfCKM, wofc it « the gowaiiroa ra&ifcei a; s smm canJ-tiBScd frodtttt {Th^biw: a IT* 
ye» Cfioirad wtfc the USPS »d a bunch of paitits u tte techooto^) Htnrew?, iwmitw fectet 
told ijyTBCSEC clut thc= sntot ttrd icdusl.7 cauna produce «toa£b zmiii cacds Ok govmoncM 
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UUgOE Bu gfaess. Summary 



pr-o grains (fob produces Umlratess acroa ISrt iadoGb?; and gcmcnwnent agenda axe to l» 
«iEin* e buy o*i? w^-tesed CKM service fastest Th* firsiso* agenc? cgpoaaaUy is fcc u,& 
C-epanrooit of (hfr Interior, wiiScis early ifcls mwuli requested :t0 isiltan CKM are ta be dcBvo^l by 
tftff »y iiea year. Whtrn tail ihut ?oan ante would dci GfiavJfiiabQim sytfi votatii; ihcy ifflmedtM^y 
aftttd to tafco soft™ bate*!, jiiil (he presifcn: aTTGCSBC art iifeed if v» cc*M dtf^a 
VfctCKfcS fc y ear:y is 2001. Since iis Hfidy feat we. wyuld ^ revenues vfdi TBC5EC awl afcee 
SSrHwa^i'iiofinib^ is artasccafete fto ftr such a rchiro customer, ULqgoo iati ttnid 
ach to tddiig in $25 ffiTCtoaftnfiiih lis ft year of t*o for jnsi M* aneopp^oisJiy 

VI, teagemsnt Team 

B21 $i«t* President Mr. Snwt & ai d-filfiCtteal tagnm tawposFmat who has hdd h#i 
mariKiii$ An0«ate pcKiicm wilh ccrap&nfc* Jvcfc fis GenaalEtecaic, Ojncirwrn CflttfMvr. Sfefional 
S««ft»dwtav Zifo&OiKcai Annmnioo, Alalia, Tusfed MormaticH Sysums, m GfypTKQ. Qv# fee 
year^ to has afco become * crypto Joarity cspect^d e Wg& tectooicjy liggtEon etfeft witfleis, esri 
operand aMgli tcctwdogy consuluug firm dm wimtana inufly Sflicti Valley cgra^es ia its dlec&Js. 
He builds sootf solid teams bceiusft bt is wy wpcrxscal hi raadera syoerji«tic teaaibeilfHug, troty 
dfiwebpAdiBiininliJscwii eeaaibuJdqg 9«itoa«teri«l«ttvF!^}^f«al^ 
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1. Introduction 

At prewrt, the conrnoeiclal elecifOJtic ccniroeice woild seems eotf mrtted to pubfic key-based 
(asymmetric) Cryptography lor its digi tal signature aadikBy exchange needs, and *ymra8tric 
c/ypiogjai&y for mm bulkencrypUort of infomati^n. 

Public Key Infrastrucures (FKb) ax very cood foe moving iaforraation from paint A to point B 
securely, and for providing secare aruihemicatioic and noa-repadiaticn. However, modern PIO 
technology still does not completely satisfy the problem of properly accessing ihc infonnation 
once it U safely in icsideace at poiflt B. This is a. particulBily important problem lor ore critical 

class of users: large o/gairizsticiis sueh 65 gov&iito&nt agftntie*, ftducaliorad institutions and o;t- 
porations, where thousand^ of user? need instant access to millions of pieces of information— but 
where each person should only hare scows to the information to which he/she is infilled. 

Consider this piobkxn: i specific visw (report) of selected data fields id a large database contains 
critical pieces of information that 208 people In tie organization need to etecdomcaJly access 
Itorooghout tht oonth :n order to do their jobs, Two people ore respoasibie lor updating (waling) 
the information based upon a p&tacic analysis of other dat^ bat the rest ar* only authorized to 
^ rifid Specific subsets of the (feta fields contained: in thft view. Thmsands; of odiiRr pnnpfe tn ite 
i| organization m not ^tJiodffid to access this data view, hit in many cases are authorised to ac- 
ifj cess ofiher data views in this iame l^rgR database, How dns* the orgatuzatSfrt waakft rhrv irt frwtiu- 
S| tioa-avaftible to the people tfcatnee-jU. while 5tmderryfag access to everyone else? 

Public Icjcy crypto technology may provide security for transporting this data* and authenticating 
the people who want to access it, but it does not solve the problem of differentiated access id 
f data fields for those 20S people. 

g Qj» way of solving tie profclem is to have a second database field containing the names 

^ (or other identify) of the people authorized to access each data, ffeld. aloiii wirh i third 

^ field specifying whether each person has read, writer or read/write: access. But this ao- 

^ pTaact, if applied throughout: the database, would mate it impossibly Urge, and ir does n ' t 

^ work fof non-daiabase inf orroetion that k kepi on other 6ervet3 (ag_, meitcsy reports, 

spreadsheet^ pictures* etc). 

A rssct&Urei on xhe above 15 tatHiild & speck! security server called a Ptrmbsions Server, 
and fceep access rights for al] users in its security database. TTaia, when a user request? in- 
formation firora a specific view of the dfctt in the corporate database, the requestor is first 
Sent to ifee permissions server, where he/sfos is authenticated and the view request is 
logged. The permission* server (hen checks the requestor 1 * access rights in i£s own secure 
database, retrieves the mfcrraaiiaafrom the corporate repository £»J presents it to the 
usx However, the drawback to (his approach is (hat tte permission server & a angle 
point of failure as well as & performance bottleneck, is all people accessing data must 
Queue up £0 the pennissioris server and typically perform one or more public key authen- 
tication steps— each of whka is a cOfnpmitlarilly intensive cask that sub^anliaily re- 
duces system throughput 
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Auotte? approach to solving this problem wuld be to encrypt each field and send all 208 
ptopfe the appttpriata symmetric encryption keys, and &3Ujmiaato the pemussioma server. 
However, this iolvskn will afeo grow to rinpossibte fcey management prcqpoilions if ap- 
plied ID all of the nriUiona of data fields srsd thousands of people wbo need access to 
th£m. 

Still another approach — snd the cue currently hussar many government agencies— i$ TO 
maintain multiple databases of portions cf tbe same Brfbrmation, and allow classes of c*- 
ers to have password access to specific databases (eg,, an administrative database, an ex- 
ecutive <£atabafe, a scienti fic database, a Sogal database, etc.) This approach provides for 
data separation and very '1arge-gEaine<f 1 conditional access for a small number of dmc- 
tioadE groups* but is expensive to del up and maintain because of tfte excess duplLcatiop . 

This need for 'fm^^rabecT dlffctttttfatcd acco&s is gejieric to large organisation* ami is not well 
$olved by cosrvenuonal PfCH>ased cchniques. TLadrtioaal PKI systems hare three major limit*- 
tian& 

• Coarse-grained .access. Public key systems do not pFovtde a good one-to-many aohitkm 
to acces&mg parts of m infonnation repository. If a member iias th£ Acceii rights to reed 
q a file, document or database view, tie/she has th& right to read aU of it* and not just some 

w* of'fr. The jdeat access control technology would allow diffemm people lo somehow view 

^ diflerem parts of a single joporl, plan, database query, or fln&dal {preadsbesu and deny 

[ft th.-?tn access to other parts. Traditional PKI cannot do this. 

, ; I « c&fltanaljased security a^jitf catjom Jftibiie Key systems have a negative impact on com- 

pue.r system performance because of the cooipraaiionally intense nature cf public fcey 
n * exponeat&iioiu coupled witfc the oemrah^ed nature of (he seenrity checking. When seo 

r;j riiy servers or permissions serrers are ased io authenticate and police usci icformjuicm 

ro access, a* the number of users and pieces- formation in ibe system grow, they in- 

U variably become performance and sitigtc-poim-Qf-fciiture bodenects— they simply do 

LH net scale graccfulry. 

?3 « No stead ar<5zed credentials, PKI systems do act comprehend the problem ofjunviefcg 
"~ credentials to people that wcutd define thsir access rights to infcamitioii That h, a tradi- 

tional PKJ system can a^therulcase someone, out cannot easily solve the question of what 
mzOonatoai in the corporate repository trot person is entitled to eitto create or access: 

Bm now, TECSEC be has invented a new <fi$tribaii£d cryptographic isy management fcchuoJ- 
ogy that can efS^femly solve the differentiated irJoriuattoa access problem, and im provide tbe 
final piece necessary © satisfy both ft doory and govenfflieflt wfth jq$ar4 w electronic: Morma- 
tiwi access— and it is exportable with any crypto algorithm oar key length. TEC SBC has swera5 
patents on this technology, wafch k called CKM* foe Cons tractive Key Aferjagement** and is 
partnering with UJogoacom. who will buEd a wci>-oerrlfic CKM secuiily snrvicft ("WcbCKM^ 
that will to available id all Customers on a HiOnthTy "rental" basis. 

Cujieotfy. the Mtaj States Postal Service is evaluating CKM Kchnalogy and a mufti-year con- 
uwtt with TECSSC to provide a nw CKM-enahled™ certified electronic mail system (internal 
code w&i of "NetPosiCeiitify j ) which will be used by millfcm of U^. compariks to transmit 
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mandatary govonincntal reports and other information to Ffeeecal agencies. MeanwMte, ofh«r 
large governmental agencies have discovered C£M technology, and am queuing up tousertfiar 
their owe internal information access needs. 

Tte purpose of this paper is to provide toe readei with an overview >rf ibe CKM techoctogy and 
its ?pplkqtisp5 via a "We^CKM flscirity service from Ulogoacora. This paper defizta? concepts 
that are being developed and deployed in products from TEC SEC and DlogaiLcom. Sec 

and ww.nIogcfirom for more details concsraingeunent picdact offerings. 

trie assumptions made in coostnictcco of this technology overview are: 

# The reader has a fundamental understanding of asymmetric (pab Lie-key) and symmetric 
cryptography. If tbis is not trae, send an email message to wbsweet® ulogonxom and hn will 
send you anex&cuave tutorial on eryptograpay that is easy to absorb and that will allow you 
to mnler&iand the underlying cryptography behind CKM. 

• No mferOTCtt should be drawn that TEC SBC is representing CRM as having approvals by 
go vei omental or independent todies other dun thcae stated herein, deluding cunrait approv- 
als to bay US Government classified information, 

» This paper is a summary and significant details have not been included. Should a reader need 
to have a more deasifled explanation regarduiij CKM or its potential for a specific application, 
;<y pleast contact T6CSEC IncorpoirHted or Ilbgon.com. 

fa 

n> 1,1 CKM Technology: A Fast Overview 

$ CKM ii a distributed uypwgraptiic key manQgeiaeEU «ys$e«i confuting of one or mpns domains. 

Workgroup Administrators dsaermirtt which membdrft will be allowed to participate in each do- 
cs main by issuing profiles to each member. CarMned within each profits are each member's ac- 
£B cess rights that &Oow him or &r to participate based os their ide in the organization, 

\k Tne key used to encrypt a data object in CKM is a symmetric key called fas wiklng Joey, typi- 
^ caity a 3 toy triple DES key. The CKM process employs tores tey values ^ are vsed to coa- 
& siract the workiag tetf a Domain (key) value* a Milntaianoe (key) -ralne* and a Random (key) 
vatee* En the most recent version of CKM— Version 10— tna ra&tetttttn6e ralu£ can alio be se- 
lectable as one of tnuBLple different values. 

The Domain value is tsed as a system tey that gives system access to everyone in lite- domain 
(fa large organization^ tionteiBS cao be iin&d together via trusted felafiinuhips, so no organiza- 
tion is too JacgeforCXM technology.) Maintenance values am used to control domain member- 
ship by periodically n&dating tha Domain value to all authorized members. This process enabtes 
Workgroup Attain! strswrs to eliminate undesirable mcmbeis from future access to the system 
by simply updating the rnaintenaiica value to only cmrently authonzed indiytduoU. It alio allows 
precise time frame contra! over access to data for archival researched, since they can be given 
only tte maittfe&anoe value* for the Time period® to which they are aUowjd access. Tbis vastly 
simplifies the typical public key infrastructure problem of publishing and tnaintaining; a certifi- 
cate revocation list. 
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Tte thisd value used to create a working key U the Random value. A new femdom mine is om- 
mEiically .generated each time an object is ejicEyptcd, maldng the waking k&y a one time *ey, 
unique to an object The weekin g key itself is no; aared, bm is created at (he &e#nruiig and dis~ 
carded after use. £t is Subsequently rccreoicd when iwcdad t but only by maiabor* with the appro- 
priate Credentials. 

To gegjegaie access to (fata among different groups of authorized nunfoos, the random value js 
fur&er [ifOleCted l>y er.dyptmg It with other keys, cabled "^credejitials. 9 joying credentials to 
<3*ta to be CEM-eftcryptetf defines the rcadeialtfp for each objact. Only those with all the creden- 
tial key pieces corresponding to all ihe credential used in encrypting that object can decrypt the 
jranfem value accessary to decrypt the object. 

A mesibe^S ptfile, Ctioteiniiig theif credentials, tbt Domain and Mainienaacc values, the 

headeF encrypting tey t algorithm, access permissions, and dgraam-specific pottctes is ooamiriai 
m qne of uvo places: either cm a removable erypK^phic *ota a sunt CisU), or on a cen- 
tral ULogon server profile malntfttod for each member and available ove* any Internet ejec- 
tion.) 

[T , CRM slknys the distribHtion of encrypted object* lo a broad audience where the distributor 
fb bi&wS; DStbertfcs identity nor the related access rights of each member of the audience. This 
«ij jwovir fes dtc basis fhr itat sbcwb fttr>H±:Afa and sftiragft nf senffelva maierial over a neui/arfr. New 
f (j members Co (he audience ace authorized accord^ to their credentials as well. 

JJ /a jAffr^ uASf allows crgtmhafionf w do something ih$y could not <fc before; rmke their re~ 
t k posiiort$s of critical (nformMen to mmbtw ov& rte jn&mz— securely $*d 

fj^j cisntfy, 

n 
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A Stoart Taten™ card or a ULogoacore member 
account (cr btfhj carrwstfie memtsft 3»W3& tor 
aii&OE^rtQaot&S&ndathsf netrtoiit porussbns 



Ameubsrcrfldte v\ o&tect "J** 1 agfttybiav m*uj% pdiqr viitha 



TTttc3^di3trE^qreiBdari^rB3Jiedw8&n 
«kM rwt»i>^ aha* w> <m bul 
aufttodzed rnem:er3 c* 3 spesfc grederiiai 
jrwp ai? able to decrypt and view the- 
rnforradion protected by that crHfejrtfsJ 



parfitovsdirto. 





Tie CKtf 3 Cunoept: Secir^ tfgh GnaBUbrtt^ Rote- 
Based Access to Data*a>1ransJi or DatchAfcftesft 

F<r example^ sensitive corporate documents can be encrypted using CKM and placed on a com- 
pany htr&act TTtsb server— without a rxntiaJiscd seccrir/ or pennissaons scmr. Those ernployses 
with the impropriate access righto tc< individual docuraeais may access each document (object), 
and each object my contsm Dlher objects within itself. Hius, csers can access document* or 
pans of docKEceot^ and that access may rurthar rori^tramsd to read, write, or re ad/ write per- 
rms&ion. A singes docGmeni or file nay have as many objects mctria it as Are reqsaicd by the 
natural How of the data wtttan the crggtrizatioiK 

Another example is a conSdentiafity-sensitive dsiabase containing medical information. Using 
CKM, a specific view of a selected set of fields— or subsets at the fields hi mot view— can be 
eacrypted using differently crederiiiaJitd random values. Doctors wiUi one «ei of credentials caaM 
vie? * ftoto of « quay report that contains lekTant medical inronr^tioo, whertas adDunisffa- 
five people could view the ftimiiiisirativT information such, as liealth aire plan Moooatian, em- 
ploye* Identity, etc Adurinisiraara would be defied access to piryacy-pxoi>?ctcd rasdical Infor- 
mation such as t diagnosis (eg., AIDS), and dodoes would be denied access to financial iirfoa> 
imipjo. an patiewtt Hie? are out eutiiled UX 

CKM is designed u> be deployed as a secure system. This metxa era ploying two-factor security 
to protect lie. credeBtlals, critical cryptographic protocols and prirare and sacra encryption keys. 
With a smart card* the two factors ase somethi ng you have (the card) and something you know 
{(he PiN). With WebCKH ilte two facto are someddng you are (abiometric authentication) 
ami sameiirurtg jou know Ca PINX Since a CKM system profile ire dtfoer protected by a secure 
snwn card that tan fx removed and secured on tie. person when the member is away from his 
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computer, or kept inside a secure network server and availahte only via Isometric &utbcn&fttkfi, 
(UlogorLcora), attackers have little capability to itlack. 



1.2 A Graphical Analogy 

Tli^ following graphic illustrates *n analogy to CKM thai shows the roles of Domain, Mainte- 
nance and Random (key) values, as well as Eiwv credential keying usaieriafo are applied to con- 
struct and use the working key at both creation and access time. 




S-Ihs cretin dblUflxnuntio can a& 
cento taftirMi&d^lyeqa 

Cab} aw pBOtt taiw SH^aa tsser- 
cnt^HHi&d lap prai!l»lAb/fc> 




bamxii (oS'sws a coflroi Via 
M h rotor 6mcmk 2»fjf&i32.* 



trirepk&d ntf atari lis* ^> 



(tolled* lift & to; fe&btthil 

3nd£ad)s»&ilBt^cni&ittufer- 
imtci atom tf» csbjtctri&hi cmtaa^ 




tsatortfeta ob nRttad to open A* taSibw wr!**^ 
nke* if stb fcsftarfti ra&ftj isr {feces oob- 

bdib» i nst ** -wfl hi d wtei tc»» Is fcwbjid 



&Har>yttaniDasftMiBfr8An&i key jura* 

MrfaiuMpjaeBp^htehtd fern fraW^ tiftS 
awto ihiiwAira kg. The rating lay based 'a 



A CKM nmxfosjf » toiis 5 aj? accessing daia objects 
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2. CKM Technology Details 

Constructive Kfj Managpmanfc (CKM) is a pioc&ss by which m organization can manage thfi 
£Edw of and access to taformaiian u the basic object level. CKM is t cxypto^naphic fcey man.- 
agHxratt ix&niqne that embeds aeoss attdbntes mi other sefected p^ajruecefs- witMs Ute objest 
itself, The archirgctiire k a flexible s&y m$m&mm syssem that incsrporm the strengths of 
both asymmetric .and symmetric encryption elements; adding in the unique CKM techniques that 
bring, the flne-grainsd role-bssed differential access. Included in the architecture & an encryptum 
key generation process ibascd on twu sets of key types: wostog keys awd credential teys, 
Wcriting key values, credential key vaJoes, a combiner process to assembfe these values and tey 
comporie-tfs, and an infiastrus£ura to support tie thstribiaioa and. man^gEncflt affile generated 
eteraeut* t& whaE CKM technology h all about, 

CKM !$3ltey iranagcJPCO? arcJittsictyre ihat. is available in both symmetric and asymro#ric 

models. The CKM trast motfcl based on a suite of fuiartcdat cotnmanity «a&darts^-ibe ANSI 
standards. The founding CKM standard Is X9.69, 'Framework tor K&y M anagetneat Extension a" 
^ for wMch (foe CKM <te$ign and infrastructure architecture is modeled Key recovery is mbcrcrtt 
^ in tide design since CKM allows the System Owner m% recovery of eacfi encrypted objscc and 
|^ no ftiid party key escrow is jequtal 

£0 The CKM k&y management architectnre may be viewed as a whole system'* identification, 

& ftulhen licaiion f ecccss control , and eccryp tion cy?!e supported by a ntaBagement *^™&iK-bm, 

t § Some termiMogy J$ needed to unfcisand aioTeirytog process, Tte fee) used in the eacryp- 
gl tioffi of an object i$ called tt» Worting Key, ft may |>e u»d as a session key or a message 
- r eotryprl&g fcey that is required by a symmetric encryption algorithm such as 3DES. TTte working 
u iey, constructed firctm several piecRj of infoimatiDa (called values), is used to initialize* sym- 
Lw znetric key eocrypikiB algorithm, and is then discarded The same, pieces of inforriaJkiD used in 

cotsfinicsitts; the wotting Key for encryption are irsed. to reconstruct the working key for defryjh 
^ 0m Tb& functusi that combines the values to crate a working k&y is called the CKM Combmsr 
g and is cereal to the CKM en&y£tiiig pfOCesd. Jfemb&r ideflfilicafiOiii, Jeeyiag Mosmatitm and 
13 ctedemials am veered in a large lite caOed a MmberPrcfik, which lypfcaly travels wita the 

membET in a smart can! or i& accessible over the Interna m a central Ulogocxom seiv^ file. 

Access control ii provided in CiftM by arpply it£ craden^ io llw ftc«yp<i01t Of kaytog &lfOfBsa. 
rioa that is embedded in the chject file header attached to the object- AsymTnatric values are as- 
sociated -vwtli e&h <?f«dentiflj $et Sead/wia* s^paiatioo is csyptographically avRrltb5« with sath 
aa asymmetric key design. Kead access is equsvaieci to decryption eights and wfe access is 
eQuMeat to cncxyptiois rifihta. 

Is adcfiticffl » access control, a broater bey laan^geoffini strategy rosy incincte a cnnfigiohie 
itfcmificiiorL capabiltl; and a third-party trust atlbenticatior) capability as iUaetr-atedt is the. fig- 
use below. 
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Figure 1: A flexible Aev management strategy 

Qfcdfintfals may be associated with aa application Ehat define* one or moie msniber identity eb- 
menf& 35 a b»me£ifc function, g smart card identity, or a POvVPasswcn-J. CKM is used to 
bkd the ideality elejKEnts to irt encrypted object through at* encryption pre doss, Tbs [&A (Iden- 
micatitm & AutienricatiotO object may consist of a Public Key Infratfnrciure (PK1) runcdons 
that can auttiEnitcate ifce member lo the network and other men&beia, and oto fynctiom Ctia^ 
may need fin be stored sccretSy a/jd winch are included in a Member Erofde. Hie essenti&I part of 
PKI is a certificate thai includes a verifiable digital signature, which is itself a mataa fitted hssh 
of informaticD dial is then erwrypted through an i^auoetdc (pubite key) process, T&e PKJ 
ftutbemticuiofi support is managed fttrcugb either the smart card or tlte central UlogQn.com 
saver. 

The £guio bdkw illustrates a lBogcA.com server and its interaction with a corcfigninabb Identitl- 
calujn and Automata Q&A) process; 

L Two types of asytnjrtetri; key pairs i&ejtfified as Global and MenLbecshrp; 

2, "Payment functions; £nd 

X Data that eccs as a physical access Auction, 
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m 

f . Figwe 2iULogcn.com: avmte to comprzhewivt, security 



*2 TheULogon.ooni Member ftofile is used as a bridge lo rovltip.le w totlcaiioa and ctsciypii^n 
j pktfoims with rarying 4egres of encrypta efitecefneatamJ b.ijtwKn& 

S 2,1 C KM Domain 

*~ Under a rdle-based access control system, rigfors and permissions are assigned to afsamzatiiotial 
roles, ratter t&an toeaca member. As snenmers' assignments change* their rigjtf? and permis- 
sions are cfcaiigMl to reflect their aerj/ roles, CKM, ma its melfccd of using credentials iefteettB,g 
iafarraatvm flow and boundaries is a gramme^ example of a roae-lasftd system, me CKM to- 
sign offers a. meiod to antiripatB data boundaries without knowing member tanides. 

CKM Adaiirasiration is based on several come concepts that apply to any CKM scarp— even, if 
$0me dre ttiKttpafMit. tfak section provides an introduction to each <tf these crirtal concepts 

TYie highest umi of organization in a CKM System is theDbmeiw. A CKM Potato is 9 ifri^ue* 
independent entity that include* all C&M resocrces needed to fuactwn on its own, CKM security 
policies procedures, and roles arc all determined at the domain level 

AUbou^h it is tins largest unU of oagamzaiicn supported withb CKM. demaias w Colly scalable 
io t wide variety of needs. A CKM Domain maybe as large as m ertjre enterprise or as 5m all ad 
a single monter. One type of application might, for example, establish a tiniqns domain foi each 
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member, while small busiirasK would likely establish, a single domain fca &e ccmpany, and 
large .enterprises would esuftfisb mwy domain* fat majordSvisiam, different locations, oc oto 
orpiizaiiQnal siruciures. 

WMle domains are testaEOlng and independent they do not need to be teslated. CKM Domains 
may share access right* and privileges wito ote domains ui a trusted relationship!. Additionally, 
members rasy psmciplte 35- member of mukipk domains even if a tragi relationship between 
die domains bas not been established. The CKM Danism may have a -direct leladooibiip witfi £ 
PKI Certificate Auiharily (CA). if so desired. 

Jmted D&main Ralatisnsfiips 

A CM Domain, may pwvife ipeciffed acorn fights and flriyfleges to menbtri or .another do- 
mgn try establsMng a trust r$ktioo$hip f ThB en % relationship is esiattished when one domrin 
provide a subset of its CKM Credentials to anotfier domain. QsdeniiaU are shared onty at the 

dmaak level and may .not be sent dtetly to raeffes of anolb&r domain eniil a trusted J?latica- 
ship tt& b&ea established. Once trust has been established, tine second domain maintains and tfte- 
trtbutes ^ropoirar credentials using ix& own rae&ods sad policies, and these asteutJals are 
J stored in the same Af emtef PrgfZ/e as part of the member's credentials, Orce distributed, mem- 
j» bera of the second domein may us&the imported credentials to -share information vrith members- 
^ of eaierrtal domain, but- they continue to bs bmind by &c policies and procedures of ttc do- 
! J! main in wMcft they told membership— to £^#Cta Domain. If a PKI CA is iac&KiBd in tte 
^ mm&mtm arcMtecrurc, a fciro-pcriy aoma^acton model my He added to the overall qrot 

m 

Ul 

A* 

f=W 
** 

in 

13 
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C&Efertt CM feral* CKMEamh 




j£ Figure 3 The CKM Berarcky 

3 2. 1.2 itmtstM Domain Retefimtips 

m 

" ' An Mvidwa I may Its a member of several CKM Domain? regardless of whether (to domains 

q have esfcaitUshfiE a trust rRlatinnship. Tfcaf is, two or more domains msy grptmembenbtp ui<fe- 

^ peodentiy to the suae iadrvi&sai. 2ti this case, GKM »es (he iinge iMUvtfttal. a* several menv 

bers— ore for eatf4i domain. In this g^e of umnssted relationship, tfw- meraxr will Jog <jmo 

IS domain indEi[»ntJ6ntty,us0 Si&pacme^^ei-P^c/ite for each den^ and posras credentials 

^ cmry to access idbiimatioia within, flat domain (and with its Trusted domain*,) 

Note: Some storage mediums (such as Smart Cards) currently do moc have sufficient space to 
Hold more than two or three Member Profile. Therefore, die abiltrj to log on to much more- ttm 
two or tkee domains nay require tkal tddidonaJ cards be carried by the member. As time and 
semiconductor iscfatotagy moves an, however, ic & anticipated to smart card m&riary &2&s 
^cunesitb a maKimiidi of 32KB) will increase sobsianiiaUy, thus pftridiftS room do carry a sig- 
nificantly larger number of Member Profiles. Th; WcbCKM system, sroceil depends upon a 
central server to hold .all profiler does not have sny practical limits on the number of profiles or 
tfte size of any corresponding data in each members "connection profile." 

2. 1.3 Domain Authority 

The Domain Authority (DA) provides tnr>l£vel management to a CKM Domain. Although some 
decisions moat be ma£l& by die person or persons assuming the nespMitrliity of the Dom ftin 
Authority, man) DA functions may be aiiSorristed. 
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m 



Typically, the Domain Authority sets up die donain by performing *c following functions: 

♦ Names te domain aad creases its unique Aw^fa Vain* (used In cryptograph lc ft}RCtitoa&) 

• Establishes anil updates a number tfMetowaHw V&lues (used for evocation an<) io 
control isfoiraatfon access to specific tttwe winctows) 

» Sets poSic? defining the muter patam£iar& of CKM qsb. Including mtefter member Pn> 
fil&s aie hard disk-fesldem, servcr-residem (WebCKM), or u&ea-iesidem. 

* Establishes and digitally signs the role~bz$ed tndentwb used by CKM u> cfypK)£rapfai- 
cafly enforce access coiuroi to infbnnaticn 

• Selects and optionally renames the cryptographic algorithms available in the domain 

* Sc5ccfc. and configures Identihxatkyn & Amliaatkation objects available in the domain 

* Registers wrk$mpi and ifcett admiafcttam tbroa&li^tilcb credemiais are distflbut&S 

♦ Digitally signs individual ittmber&hip keys, and tathorizations related to CKM enrpB- 
mani 

• Registers and digitally agins CKM-enabled applications 
Creates and dtecributss Wb^rc^ Pn^/?j deflolng a sob3et of cce&rum algorithm 



n\ permissioiu and policy settings available En each workgroup 

| « • Determines tot relationships with other domains 

In 

^ CKM altowa members to leceive credentials, pcicy settings, and aJgcnidiK penuissiona only if 

signed by the Domain. Authority — even if some of these values are imported from other domains. 
" ' Members arc besmd to ibe Domain Authority via the OA's CKM Membership Bey and certifi- 
cate issued to the member. The DA^ CKM MerrfceeiripKeyis then used to verify the OA's 
jg signature wken receiving cjedeniifiBs and related material 

m 

8 A Domain Profile lefercs to all credentials, policy stain^ jud algonto perroisiUJte esiafctished 
O by the Domain AitttKmry and avai&bte witWa the domain, Tb? Domain Profile also includes tbe 
domain's name and value, the cnaiiiLenaiice value, and other iufoirogftan identifying the domaia. 

2.2 CKftl Workgroups 

members [or -smaller wcriq^roups) based on commas needs and rights, to informal! on. 
Wcrkgrcmps are often established 10 parallel departments, locations, projects, or ether natural or- 
ganizational subdivisions* 

21.1 Workgroup Administrator 

Wcrkgrwps are typically managed by a Workgroup Adtounteiiaior (WA). The responsibilities 
pfrrfbm«d at this Jevel may by a person inferatfing wife aoftwire. or may be automated fc 
par: Of in full. These responsibilities, typically include the follow fog: 
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• Refining policy settings (as allowed by (he DA) lo provide further jesnrictfoES foaa tiiotK 
originally granted to tha WcricgrciLp by fbe Domain Authority 

• Rjgiwedng xhfi individuate who become the members of she Workgroup 

• Assigning subeets afcowfeniials and algorithm permissions tvaikblfi in. ibe WoHkgroup 
Profile fe> individual M&mber Profile* 

• Siting, distributiag aad updating Mvnbtr Ptofilt Updates to Worfcgrcop Members 

WmfyffMtp Profile 

Tht Workgroup Profits contains ell credentials and algorithm p&mri&iOas available for distribu- 
tion lo the members of a specific workgroup. It at$Q includes Aft poiides gSwenting the 
wortgrwp's use of CKM Workgrraip Profiles may differ fra otber profiles in (hp ttine (fr 
ream-—d£finin$ ihe unique rights and needs of each group. Workgroup Profiles a;e cieMed by 
thel>)niyn Amboriity. 

23 Member Profile 

& A Member Pwfk includes &ecjraten&0$, algorism jpermissfoas, and ^forced policy settings 
i ll assigned :o an individual by a Wmfcgroup Admiiiistratnr. The Member Profile also include* ths 

individual's private ftssitimetric CKM Membership Key used ca decrypt profile and other mera- 
U1 ftership mformarioiii sent to tha member by tha "Workgroup AdminiAtrator. The members: "public" 

CRM Membership Key is retained by the Wodcgronp Administrator and is not posted for public 
£ ijse as In a PKI. Hie Member Ptoffls also includes the "public" CKM Memberskp Keys of the 
^ Dorcarn Authority and Workgroup Mminisirflio;. Also, in WebCKM sysfcms, ft wil also ta- 
L dude one or more global and woifc&rcup membership PKI (fcdivid&ri) private keys and digital 
jg cenifcsaw* used for encryption cr signing la WebCKM aad wber c^tograpbio $ywem$, S w 
^ Figured 

|0 Members miry receive profit and irjefliberafcJp Irifoimafon ten the single Wor^rcnp Admin- 
~i istraror whose Jrtenaberdup Key ha* been issued! in the Memb&T Prolife. Alt npdaaes to Member 
r -" 3 Profiles are signed by the Workgroup Adraiiiisantair (WA) and must be verified by the WA's 
CKM Meraberstii p Key held by the member- 
Members may be assigned to a different Workgroup Artnirrimmr only by receding a new WA 
Mcmbctslrip Key signed by Lis Domain Authority. AdditioMSy* raedejitia& may to \jpdaiEed cr 
added lo the Member Profile only if signed by ihs Domain Authority and verified nsing the DA's 
CKM Membership Key held by the member. In tiis manner, each irrfividiiil is bound to a, speci- 
fied wjri^group snd a specified dom ain. 

A Member ProfHe may sake many forms, & may be scared locally cm a member's iwwfcstatian, an 
removals scraps such as a floppy dfefc t on a neiwwfc server such as Ulogonxotn, or oa a physi- 
cal token such a* a smart casl. The form of the Member Profile is OTnfigurabJa by the DA. Oft> 
of the pnlicita carried Twihin the profile dctermirci where profiles arc allowed to lesidfr Tbe 
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foim of the Member Profile is also dynamically scalable, Le. if the profiles are not found in the 
on a location, then CKM will loyfc t» tha next location until iba installsd list of locations is ex- 
hausted. If a profile is not found in any of the allowed places, (hen CKM will prevent the man- 
be: from initiating a session. 

2.4 The CKW Process 
2 A, t Ihe Setttrity Paradigm emf Data Steles 

Adequate security i& the condition, at which protective measures have been em ployed that reduce 
tk fisK of Joss D> an acceptable operational and financial level. Total effectiveness depends on 
i3jc synergistic interaction of variotw system rea$nre$ that induce mieats Cram inside and outside 
attackers anchor other vnlnerahilitiea. This synergistic interaction forma a trust model That ta, 
erne security measure alone does atf provide adeqaase security. Only when all are taken together 
does adecjuate security resufc 

EEHjypUui is a luoI tltal mitigates e£itaia vulaeiabilito sad ih.ua reduces isk. To form an effec- 
tive infonnaiinn security trns: model, a member ma si be "boa^tf scaaehow to the data beor sfio 
is authorized to access. CKM technology begins, with strong MerctifkatioB thai is [hen directly 
3 bound to Die cncrypto of objects via a credential ing process that In turn ensures tits integrity 
and access control of trie information being pro tec cd. 

i# Sinea f!KM ift drenl-h^ad , the trns: model may be scaled to many member: 1) ty -distributing 

^ the ivorttod to member workstations (dcsktopsX and; 2) by malurig the encrypted chjeel the fc*- 

' « sU of trust adjmiication instead of a oetwork-based server. These are two eriaicnf fiffcrtntx* 

^ &?nw£7i CKAf oad iKftffrfoHijf PK1 itruciures. in a traditional Pftl sjstera, a {foot-end server 

L protects access (□ the data, and the Security focus is cm anthexricating each reqaestiitg member, 

^ both 45 to wtiOJB toe/$!he 1$, and a$ m what infcrmatioii bc/ahc may have access to. WErA CJCAf, tftf 

^ tfficci PKJ oufhtnticafton sup witk a ett&ratizfJ xeturity sxrver h mt required. Once profi l£3 

iw have beec dlsfcrilnited Eo meni!)ers> encryption and decryption is controlled by individual mesnter 
profiles, Y'fitah typical^ w*H either resliSe on a smart card or a web server. 

u Data may be Tie wed at any given tiree of being in certain states: 

1, Dm at Ffc$t: data object aoe ia a fixed stde in a-storage capa&y, An example of this, 
state ia a (tea field in a large centrally kratsd database, or a serfe* of dorairnents resident 
oft a aetrrtirfc server. 

2, DMa in transit: daia objects cast are csing fjarismiued in a co-ummncation dmonei daring 
a period of time. 

3, Dam in process dais objects mat are in static: memory areas t>emg.ir^^olatfid by a 
compute" operating syscm end/or one or mora applications. 

CKM can provide at key management and control scheme for both data-at-rest snd datarirMraruit. 
Data-ln-proDess seconty is dependant for die most pari on operating system ami bardw&S'taseti 
cortrol medmni^ms. 



ii: 
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2.4.2 CXM Combiner Ftfrniion 

Ths mis of iheCKM combiner is to create a woilcmg key fnm the comain, maintenance, and 
random vatoes. The working kay encryption process uses a «tan<tef<Ji^ trjpie DES (3DES) al* 
goritlm Tte output of ios combiner tutx^n k&e(3DE$) wrfciB£fceya;s&owa below. 

S toted sflfrcypied hi 



Statin ft* 




mm 

Figure 4: The CKM Combiner Function 

The working key is destroyed rmmwitateJy after an object is encrypted. In ar-dter for jecipteftt* lo 
be flbfc t decry* the object, certain iDforssto is £ivffl to them either wiiMn an object header 
cr via She mem&ej profile Be random value i$ encrypted with a hey generated (asserabfed) by 
tie Crodbiitial$ to ent^ptor fcreatcr) selects. It is irapoitsni e> note thaxiilinoi possible to ie> 
reate the writing koy solely from ififormstian provided in the objec: beater. 

Tlie working key is used with asymmetric encryption algorita soda as 3DES oca future U.S. 
Advanced Encrypeoix Algorithm eo encrypt the tctual data object Since th» wwfejng ley U de- 
stroyed inraiedialely ate an object is eacfyptod, Mormatkm pointy to flue specific data re- 
quital (which & iiuaiter may on' may not have in fcis/te profile) to iwwtruct ard apply the 
values. ciedfiMiaiA, and otfeer foncttms m included in an encrypted beater thai anyone in Use 
flora ain can open. The hc^er-otaypting isy ia managed lhiough the seine tfUtrttwtkM scheme 
35 Tbo maintenance value said credentials <e.g., attributed from a W-jrisgreup Admimsirctor's 
account St tf» Ulogpn,ccm server to individual wuitgrtmp membef^' at counts- at the same 
serverX and all can be updated concurrently. 

Read and write access, and the protection of the tsndoro yalnfe are aceoanpt3Ul»3 tough a com- 
brcation Diffie-Hellman (asymmetric) process that creates random value encryption Keys. Nor- 
mally, symnnetrtQ key cryptography (3DES) Is used for random val ue encryption. Jn th» a*ym- 
roetrfc crodeiidaHng process; a DiEEe-HeUman static key pair is aascciafied with each oede.atisi 
(piece) and tfie "public* jtey of each pair is used to derive keys that are to combined mate* 
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raaticafly to create sufficient bsyin^ material to encrypt the random value* A member with an. 
appropriate gel of Dtffie-Hetlmgit "public ke/*-tea§ed credentials may encrypt objects, and a 
member with tfte coirespQnding set of Diffie-HeHman "private key ""-boxed credentials can de- 
crypt those objects A member with both sets m both read and write access. This proems results 
in other parameter & si are also included m d^ member's pfftfite, £i>d &d additional lewl of as- 
surance wllhln (he combiner functionality. 

2.4.3 TAB CKM Heater 

A CKM object leader mutt te avaLable to decrypt m encrypted obpet, TJie CKM header coo- 
tains, among otfjer things, tfeo ewiypraJ random vetee used ifl consirccring the working key. 
SicsiCe thebeadef Is-escrypt&d with $ header key known to .all in the detain, &e headerof every 
object encrypted by CKM may be read &y anyone in a woiKgroup belonging ro iht domain. Note 
t^at the random value is not ivaiisbte to those without wypto^n^tric read permissions for all ue 
oedemiib originally used in that specific object encryption process. 



Encrypted under the* 
distributed by Adrnriistrator.arrd stOr 



3 Key, wh ich is 



Random Vah» is encrypted undoitte combined Credential Key, 
cgmponentsof \iAith are distribsteti by the Workgreip 
Adralrrisirator, and itorerf In the Member Profile 

: 3e Header 



Itoi^on about the fie caiWs including its creator, he CKM 
domain and workgroup ktef%and traltienanee teuel, oreailon cate, 
tmcf^cn aMhrri informafiofi, distal $®&m, crocf&ifel ridJcfes, 
etc ^ 

I RandQTftVa» 1 0 1 0 1 ft -1 100 | 



Figure S-JheFUe Header Xmt&bi J VtfaiimlOH abcut the fiU, flfcfflj yf'lth ifce Emdom Vodut> 
nttitJt ttay optimally be encrypted with ifc* combined credential ke% The header is encrypted 
with dte Header Encrypting Key, which a& members cfike domain possess. 

2A.4 Tte CKM Dbjwt Encryption Piocass 

With CKM, a ftte or document may be encrypxec widi s wortJag feey t AltKnsdvery, a. compg- 
necl of that file Of <toct88«U (Milled an Gfc/tftf) aiay also be encrypted Inside the main file with a 
working £ey <li£ercrji from the raaiii Hie. With teatfitiona] PSI security methods -lam objects can 
typically te do srnata than an individual file or database view. With CKfiC fiowerar, an object 
can be as small as a single word wifcmafik, or adata fifiJd within a darabiifi view (query* Of 
report)- This objecVwithiiME-object accfciiecttire foxxl do COflSCrafctS Wi w orgaatalon's abil- 
ity to apply CKM technology to its namtei inf Donation, segmentation— edtfier when the data ts at 
res: in a B&lwoik<annec2ed inform£ticn repository, or while it & being trass^rted across the 
network by saversl transport mechanisms (each "providing a secure CSH **0b.Jeci wrapper" 
aromsd tfe object being Uaosported). 
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required to- ciwk 
tfts proper *» of 



Greeted and fubae^enflv "fcAlJ, 

dlscuded-flewr stored w aku 



Credfll&stasd 



? wrypkd undo ihe cartoned Credertaf Key, rtnruccttflb of 
'iflftft stdlaRUeri by ihittaisraip MiTnlsuta^ntf stored 
rt ft* &£attfa*r Pittite 



CtorwM 8« Heater 



L 



Wwrsffln abouttt»ffe«a*Mite ft&ding its croft* to CKM dbrrwin and 
ttGrk$<xp i&rrify fttf ma-tEaastta fc^aeaian data, encr^ta a , f"'" - 



file Hwder 





ttcrwtafcilhi 
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rcqufrad tocresle 

Encrypted imi!n£i«naa^CwJenti^K^wmP9neG(9al 
inth&MeMbrr Proie 



5 




Figure 7. The detailed CKM process for multiple objects 

With CKM, objects can be contained w! aain. objects. This is corsvmitULt foi several reams: 

« Wnjea different people ssxd to be gsmied differed awes* rights to data objects wlffiin 
a document or database each umqua dm group (e.g., sections within a business pW 
can oe de&ignaTed as an qbgipcl and! included wiUun a higher fcvel u&jefflt (&& business 
plan,) In this case* lower level objects may tc maaged withitt a higittr level object ia 
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* Whea dufeneiu transport mechanisms arc used to move a data object, eacfc niay wrep 
the object it soc$im wi* own CKM credentials (e*g. , a locaE police deportment 
message, encrypted under ithsi department's domain, then wrapped by the FBI do- 
main on the Interact, and travding ova a State Department nciworfr, which applies a 
State Department CKM jpedenUatiagand eacryptiri£ process.} 

• Akcmativcry f data objects may be organized i n bodh MerucMcsJ and paraflsil subdivi- 
sions* each architecture tracking die way In wtrteh an argmizaiian performs Us rats- 
SiOn, CKM Qui easily adapt te object braarchy to Ct almost any organization. 



An cbject niy biv* raaltfpSs obtscti 
uiffln II, sua Out tiHbrenl pate d 
en ocfiinaaicn-can flaw rase onsrrih. 
eccese ttwifftfejtt parts «t * £oge 
tfcsumuUsrSft 



An object imytaue a hktspty ai tnAitfk objects 
tffrhlt wh^tflftrOTtrKBMritBalBnlsnis " 

can ecpaatefy 'ito^j"ths objad w3h She 



wrajpc^fHroing jrhsm met wis owpcn Cast fWfipsRffjMHii 




Ftyra CKM object cotnbinotidns 

2.4.5 Tfte CKM Cfedenfolmg Pmcess 

CKM 1$ S'jperlor to otter CTyptosystenu for many tenons, boi iha most important Is that 11 al- 
lows {Mfeneaiiarted role-basec access to large daL&a$e$ of informatiQH TM* process is initiated 
at LHe time the dita is entered into the system. For examples tn a large reporting document (file) 
with many sector eash section, chapter, paragraph (or word) can be cxed&ntiatel and encry pied 
differently from the otters, according to trie roles selected foe lead or read/write access. A simple 
example of credtemiattng choices for ins crearor is grown below. 
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Credential Categories: 

Sttttrity ClottiMpans 



•Hera Economics 
Haw 
♦Dean 




ton can dhaDse as man 
classtetlcreasyouw 



TiHIs sRteetkn matrfcls-tor all 
Pressors « Graduate 
AsasteatiJh North Arwrfca, n 
the School of EngSwrlrtg, wtw 
affiAUthortawlfcrPiQptlBfar^ 
Informal ton 

A Kiecflon En each category 
tMffffc)rfe1I)»-aitc«$ft* 
tSiis irforraatign, No! 

moa» mm is roJimitalioi 
far ttat category, 



••F^dafrt Sudanis 
+ Remote Sfcifente 
Ccwrss Clasaficaicns 

• C-ircuEB 101 

«£fe«trama^efcReJ&t 
*Th9tmo«*/nanrics 1 
'Calais? 

* to-state campus 
*JJorth America ^ 

•Europe 

CKH CrafeniiaJng: Mow Gbfsct °Cr*atar&"S«lecr 
Cttdsotlate for Hia Data They Wish to Prelect 

/^iuv ft ^ simplified example cfskt CKM cttdez&iKng process tn art educational jetting 

Ocd&itfel cdirgnrffis classifications are defined by the Domain Authority. Nctoth&withto 
(toe set of credential citfacas, moitiple cla&ificarimis selected wtirtta a category ai&GRsd k while 

aB. Category choices are ANDed together cwiceptnaily to derive the credential key* u$£d to en- 
crypt the random value (e>g. [I^opnemy] AND ffogjiieeringj AND [Professors OR Graduate 
As&E*fi&] AND [ftonh Amalcjt]). All cRdentUi categories intitaded at tb? creation of the in- 
forMipr mu$i be available in cha ocrabsr profile of anyone wishing to access that information. 
If only ere required credential c&tegoty is missing, the object wis! be unavailable. 

T&i5 CKM cretfenfiaRng function brings two critical benefits to the access contra' pfoblenu 

* tedsnito allow iole^ed 

Such that access can be controlled by fie credentials held in a member*? profile, thm 
ciimniaftinsthfi need ^eT>Mffli&fic**Of ^ecoiiiy server; 

♦ By pnvttug a ttandardfoed way of creating antf applying credentials thai informarijD 
creates can be trained to use consistently throughout a domain, CKM brings a new 
standard metlwdolo^ fiw substantially enhances Monnufan access Jar organizaikjns 

OfaflbiKtS. 
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2.4.6 Tke Cm Session 

The. Domain Authority sets, and 1 Workgroup Administrators enforce session timeocts for mem- 
bers. Based on sec&rity risk, the maximum idle time during each. CKM session may be cen- 
trally comrolled. Season timeouts are mcliMied in each memter's profile aad may not be reset by 
the member, OeaeraHy, the member is required D repeat the idcmiJucation and aaihentication 
pretess is order to restart a. timed-o at session. 

Z£ 7 ifenfflfcatlm am/ toUmttsatiM 

ftfc ntifftoa rinn is the process cf id^itif jing the member. Aiutaticmwn is tte process of validat- 
ing that identity, CKM profiles are eiwrypted with identity pc ooe£$. In order to access profiles* 
members most provide proof of identity. This proof may consist of J4esen£ag vaK4 User Identi- 
fication fUID) along uiih a carrecL nasswoid (PIN). It may also consist of presenting a lilometic 
scan such a$ facial contours, voice recognition, or lip movement while speaking a pasiphi-ase. 
Authentication occurs at (he workstation when valid identification is presented for the profile 
iJiAl wa$ issued, by .a Workgroup Admmistraiar ; 

rn A WoricgiOup Atf minisuator weaie* each member's profile. Among the data Included is each 

J5j profile is the member's ideniificato. The member may not change the UID supplied by the 

Ss Woi%oiip Adinmistrj tn:. Bach time ftil iib3ect is eftcrypted, die t&ittiiy Of the profile used is 

\i\ pissed: in the header so each recipient may verify the identity of the edCtyffttf. Trust is assumed 

tf; since only a Workgroup AdiriDi£uacar may issue profiles ami only a Workgroup A.dmitUstraKir 

*4 may designate UIDs. 

m Rwosattefi of Member Aesess 

^ Any ayp»$y$tem must fis*e the means to iStfoBs* a member's access Revocation refers to pre- 
^ venting Access to material encrypted subsequent K> revocation. It does not refer to pceveating bc- 
t\ cess to material Encrypted dnrmg a !netnh£r' , ft period of legltim ate aceess. Once the decision to 
ifj revete is made^rwoioryr^ac^ 

□ warrant, CRM has multiple means to tevoke members. The btsic CKM rcvocstioa methods bks 
5 listed Mow: 

* PictfJe espiratisn. ISEdts p?ovioe a..ron?in£> perio^o method of removing member access 
Jnsi as credit cards expfre. As pr afiles expire, (hey may simply not be renewed. 

v Updased maintenance value* eliminate access to those without the new value. New 
mttoteittfioa vetoes have backward unlit* so thai material encrypted wit& a previous 
matriieMfloe vsrue may be decrypted with ft subsequouly issued one. The DA may 
choose issues new maintenance vat^re^ifcd ncrt gjvftfe in certain mernibers, thu* revefc- 
iug their access to future information, Periodically* new madntertam© root: values may be 
issued that do not have backward utility, thus marking the beginning of a new time pe- 
rifi'l MQlitpie mafritertaiKe values and ranliipte roots allow fae-gralned control over tine 
periods. 

• Maintenance values cm be used as "lime release" fociors for time wnsUlse rnaierials. For 
example, couxas materials may be issued to a student by 4A e^CationA) ins&tnfioi^ and 
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new maintenance values may be issued at tht beginning of each week io "onlocif* content 
appropriate for thai week* s. study or toting. 

* An advantage of a web-centric CKM bya&m (Ubgoo.com) is. that raember profiles can 
be cancelled or changed any tf m with ^realty immediate effect as m suiters connec: to 
ihe central site to use their j*ember pcrtfJes to acceastfd client c* create new content, 
their credentials can fce charged from !he last access, This facility h particularly nsefui in 
responding no— or pirating— certain security attach toy cmtsideti and/or former 
uikgrpup members* $bc$ ill an administrator has to do n> forestall *w6 attach w can- 
cel a rogoe Bi«aber'.s crecteitiats. Thfc is a more difficult problem for smart carf-basec' 
system Jlwc- ^ logse rqemoex conia wrttrmfi aceewiija eastern up mm Ac «edcmtai& 
oil the aid finally time out 

2A.SK$yftmverr 

Key recovery refers to the ability to recreate or retiieve working fceya, CKM technology is 
unique in. that daUbb in private key escrow and session key escrow. CKM does not escrow any- 
ihto& CRM prowdc$ the Domain AuiliOrity-^and to 4 limited extern the Weritgrtap Adraiiria- 
tmor — with die ability to recQCSimct all working keys, since the DA created all the system keys, 
as wen as all the credentials. If the leader or ifa cqiihralcn!lsrMQ^avattahle£DtneDA,t})e 
vrodpiig key cari be reco«mct«L 

TCs S&y TccavcrahOity of CEM is a critical advzntage for two reasons: 

First, all ofganrzaiians need art abiHty to recover encrypted files when the primary encryption 
keys have been tost. Modem high strength encryption 3s virtual ly unbneakabls; so locking up 
vital inteJIjcaial property and Caen losing the keya means that data would be lost f arena In 
typswd CWrnercial y$e ( employed turnover, crimptitw EftSjiecfc loss of totes, and other c&tas- 
xrcfte. happen to a significant percentage of orgamzaliois every year. Tims, it is in tbe orga- 
nization's best financial and security interests to harvo a simple rccorery capatahty in ca& a 
woikgioup mtmbcx loses, his or he* keys. CKM provides a stiaffe key recovery eapabiHty. 

Seccrri, modem high strength symmetric ^nGryptfon i& subject to government central in many 
ccrartrics. in ttie Untied States,, riie export of strong encryption Is regulated. These regulations 
are controufilly being wvised :o eddreas the demands of electronic commerce and national se- 
curity issass. TECSEC has been granted a unique export license for CKM tafcnology. See 
Appendix B for more deuils. 

2AWA Wwt MM Databases... 

CKM usage with normal electronic document fiks is fairly sttalghtfurward. Data objects arc en- 
crypted with specific CKM wojkin^ toey$> grouped imo object hierarchies snd stored on netwodc- 
avaOable magneiSc o* optical storaga devices for access by armil titafcof members with the ap- 
propriate aefleHEials. 

Database however, are another problem. Because large relational databases need to conduct 
internal operations oa the dm costai&ed witMn, encrypting etch field can pose a problem. How 
can a database sort daw, calculate indexes* ceeaie calculated values (from multiple daaflekfe), 



in 
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and perform ad hoc inquiries if each field is enciypted? If encrypted with CKM, how wo old tto 
database feow what wtjdemgk»y$ & use? Where waul J such infanr Mien be stoierf This i3 a 
case where encrypting she data for sscurity reasons may get in the wiy of managing dial dam 
wi thin a relational database: 

A Mirater or Isclmlqttes Stave been developed to solve this preblem as follows: 

• Monte filfing oui database forms for submission to the database do not necessarily 
need to wdtfy about \vhish credentials are 10 be applied » web tMd, Special tem- 
plates are created which present prefcrmatted electronic mpirt forms Ear members to 
key io the data. Each template carries within it the index values of tbe preset creden- 
tials associated with each data fieftdL Thus, clerical staff ftxd not trtn kiacrtv wist 
aedeatialj ire being uppEi&d — all they know is the data is cffleissd and ser.l on its- way 
when, coffi) plated, usiag ueir member picRles and their desktop systems to perfora 
tbe DECcssary eacrypefefi and olgftal signing of object 

this way. (kinase indexing must to ample (e.&. based on serial aumbexs) and file 
^ header informalm most also be kept in order for (he cki£.hase to decrypt dma fields 

q for iniemd mainterarcft purposes. This provides for substantial jtfotectico against 

kj hactars That might srarcfc itie ntagnertc or opiieal m«ti» Twth analytical tools. How- 

is e*er» it makes id hop searches of the data difficult K> contact. 

If? 



• One approach is m decrypt all data centing into the diabase and jhik it within the 
<ktaha$e structure as ptajn (non-siciyprecr). Since all members depasitfcag or 
viewing dais toon do so through predetermined views of die daa thai aae controlldi, 

r formaned a&d presented by view lemplaiies running on a DBMS query processor, litis 

0 a^rapieirattCTtoirjclticeOT 

S drtabsse tsraplaUng process. Thus, a member iequest* a specific view of the 

data, the database reference m lempig© selected reads fee cEKfamiating inform* 

2 tion for cacti field fetches the data and encrypts is wltfi foe appropriate woridng to, 

*5 stcring ihe encrypted Rajntoni valafi irithiti the object header in the normal faction. 

Q The member thsntetriews the CKM-encrypced daa aad uses his/her member profile 

to access thai data for wlatewi job task is under way. 

* A variation oa the above approach is » ose a single secret symmetric key to encrypt 
all the data in the database, thus providing projection against ha&m that might 
A^ancfi 0m storage medium with 60phistLcai£d analytical tools. This inserts & decryp- 
ti.^n/cnqrypM step into &11 database access fa either ratonal Or external use, bat 
ncvailtttos is perfectly ^•ottoble. All CKM cietlentialing and encrypting operations 
®to «3f bandied by the templatiag process. 
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^j«rf ./ft CK4f dati&m security choices 



Since differartt c^aaizaUoas toe dScrem security policies pertaining eq the archteeciuie and 
managemsu of their <Utatases> there ai? a mimbsr ofsahuions— and comMnaiions- of solu- 
tions— available to deal with its database maimeiantfe piobfcaL A iianftfr of large ROefid 
agencies, are currently working with t&e major database and template complies to perfect the 
most optimum ways of storing and tetrieving CfCM-enabled data to 2i&d from Federal database*. 
Undoubtedly newer and better variations will continue to evolve as these organizations jain 
more experieBce in deploying CKM-enabted sysiCai^ 

A major advantage of CKM is that mny peapk wish different data cccen rights may all request 
axd ofrtaw ifc* same standard database input or query ferm over the artwork Smce difff^nt 
dam fields may have different credential* appBeA m ifrm. only the "atfbmatiox appropriate to 
each member is made available to fitat member. Ih 'a ettow? a mgle daiobase system to serve 
the needs of potentially thousands cf people, inptft&tg or outputting crdy data related to 
their job rotes, hut vifo nil numbers sharing a smdard set of tsmphted forms and rfte tarns 
(mm-dupilcated} dm repository. 
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u Ftyme 1 1, .An tsaai^k of a dat&bas& query Jonn encrypted ntil: multiple credential sets, 

g 4. Member Profile Storage Choices 



4. 1 The Smart C&tl—A Decentralize Prom Stwags Setom 

A smart card & a thin pieca of plastic the size of a credii card but a pwo&scr, rea^write 
memory, and metal contacts so tiiallnput/Oulpal (tfO) can tafee £lac& ISO 7816 provides the 
specification for smart cards. A CKM-eaafcted Smart Tofceti card s&tgs Member Profiles. I/O 
Screen an ISO smart card and a woAstatioa can b& relatively stow, malkkj aession logon rela- 
tivdy leogtfay. Neverthelesa. with the greater storage asxl pmccssmgcapaJtiHty becoming am- 
abfc today, smart cards ftold much jcrcHnisc far sesare, ponahb information storage, as wall as 
possessing the advantage of three-factor security (something you know PIN)* pins, sameihing 
yem have (the smart card), plos sot^tog you m< (htottetrics))* 

Stfujre KM-age lire wis? of ft Smart Token card means thai data Is either stored in & secure 4*34 
of memory that can only b& accessed by ft* smart card operating system, or data is encrypted 
vrf ife keys stored in a secure area of memory, 
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Figure 12: Art example of a Smart Token cord 



Smart ceras are a secure and portable CKM profile storage option. Tttey held a member's- profile 
MoimaHon and 8be critical encryption algorithm, and are removed, from the system (card 
resJer) and secured on the person when ibe mjen^ber do*$ not wiSBt to fee oti-tific. This mabftS it 
j£ extremely dlffleuit to* awacfeB W> tack Into the security system rince: 

|4j assembly (ooeibincr) arc wt On the works WU0« or the workstation's, bard drive, but oa a se- 
ll; cofeSmariTqacencaiiJ. 



4fi 

M * The network has no access to tte smart card in the caul reader, a*l tf a smart cwd is IouikS 
& by an attacker, it will not function without ihe ranter** FIN and/or rjiametrlc scan daca. 




K^ar* >l« example qf a smart card reader with integral PIN padi 

CrypTEC Systems and TBCSEC Ireorporated are currently developing a secure aa art catd wnb 
enhanced storage and procesiiag, a& well as lw<fcvare randcun number generation capability. 
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symmetric key pair generation, mi tamper toxica. This smart cart is called the Smart Tote» 
card Ii ctirreruly uses a smart card micro coraroler wiih £tK3 of BHPROM mwcty, V&& of 
ROM meinoiy, smd aa attachsd crypto coprocessor. It will eventually use up to a 32-bit proces- 
sor and carry scvsiaJ megabytes of storage. The crypto coprocessor performs Urge number math 
and bit manipulation very rapidly, substantially improving, the praowsm" speed of cryptographic 
algorithms, Cc/iain ai$as of ncmory will only be readable by the card operating system, thus 
prelecting laying macriaL Since Member Profitis and the CKM processes thai create working 
Iteys will ttsiile oa the card, only session logon information and waking leys foi iar^ge Ejects 
need to be exchanged via can! I/O. Larger profile files need to *be Cosmuiiicarcd across tbc? c&d 
t/O only during profile utstaltaUuii tud uuliviUior, mj die zuiiitil t&nl Jftjjdmdlh liintiatiuOs me 
not a system performance factor. 

Another festers being developed is tile iacMon of <i triometric capeMl This capability with a 
sniirt card would allow a high level of security vilh strong, UID, as well as the abfirty to store 
diEereni types of iafbimattoii about tlie member in a package that is easy to carry £j*J easy to 
we. At pieseirt, several fingerprint devices m availahk or* the marker, as vrJl as ftataJ tscognl- 
tioik speech recognition, and lip movement ^cognition devfe&. 

| 42 me Worn >wm Web Sflvfcfr-rf Cmmiz&t MeroOer Fraim Sefmms 

»Jjj Au alternative no the approach of utilizing smart ;ards snd rcatoxs at each desktop to- contaia a 
H niemtefs^ofiliiitoplaratMpnjfileof] asece 

the Brcemet. "Willi this approach, tb& smart cartf. and reader may be climlnaxd from the system, 
^ ami CKM functionality can essentially be rented on a Bxmth-by-mcnlh ox veek-by-week fcasis. 

The ULogaa modd essentially dioyss the smart card fnncriom tc a iecure ULogcn server, u&ug 
3 it fLTfile unique to the oser and the domadc(a) he/she belongs to. The desktop still would encrypt 
*Jj artel decrypt Eies, ami woold rely apon the ULogon server forsigaiaj and verifying sn4 ail 
? 3 woifemgljey creation The sever would bold aH private key* and certifrcarcs, ihc user's CKM 
:% ps^fdo, including OttdewlalA, and the Biometrk: cEmpIams. The semr will have a "member pro- 

fite r for each user and admimstraKas mil simply transmit ciedeniiaU and ether periodic maini> 
p iw^ce derails to usirc via M 

Werfcgroiip Administrator* ?viU perform tjfcir admm&rative. chores via connection m (be 

ULogOn 4it&> idstead of on their local system*, 

Since the wixe connecting the ULogon scrvejf-baaed user profile (containing the equivalent of ihs 
smart card) is now qaiie long (die tenet) and vulnerable- to w&X Difflfi-HeOman key 
chyige rcjiinc* arc ascd by todi Oic servtr and tie- deskcop, so the desktop and server era ex- 
change private inTormatian securely such as wuiking. keys, cemmand roqo^sis, messcgp dfeess 
to signed, etc. This means that a user will aeetf to have a lettable connection to ihe ULogon 
server, since every tan: an objeut needs signing tc TBrifying, or every tianc a working toy needs 
to&cuiistriiaetl K> aeaSe or wuwsa an encrypted Object, die sefvi?i win have to bs engagpi Tbis 
also mears that if the server or the r&twort goes down, Jhe user is temporarily out of wttt 

Hcwcver, toe hps some advamages to the ceruraHzed ULogcn approach, including^ 
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1 . Lower costs erf entry ffjf tie cn&omef ; iftSttdd of £*ayiog. Sfly $5Q-$lQ0feeai for the 
CKM software license and 150/soct for aCDROM, sssm card and wader, fee user can 
new pay a smgibr monthly m&, say, £S-iC*seat/mcm>i 

2. MoWllty; A user an now travel the web and log in &xjm anywhere. (He may need to 
diag a video earner snd microphone arrdiCD tronnd mth him if the uses Bio©* vhi?h 
uses f^ciaU voEce and Lip racvement as bkraetric authendcaiioci modes.) 

2. Convenience; the big ocpsosc tn deploying CKM is not the coat per seat or the card 
srxi rsadzx, but nther the training and systems integration work, necessary to setting up 
the iitfr a»tructiire— especially training Domain Authorities and Workgroup Administra- 
tors, Tans, a central veb-based approach can provide a lot of coavcokoce, including: 

• A fzroxssiosaL and readily accessible training tool (access the site for training 
programs.) 

• An easy way to download necessary user and administrative software motto tea 

• An easy way to set up and maintain domain and workgroup administrative fimc- 

m *»» 

S * Ko aMit cartJ bardrae to inaaLl or debug 

jy • Larger and more numerous domains and biomeiric i&mplates can be managed 

hi (no ynan card memory constraints) 

^ •Using Bto-0), member enrollnient be muck easier since it can becamed cut 

^ on-line via a rideo&udio/fccy board chat mittrwew using die Bio-ID for amheiitica- 

*" lion. Br-rolkescan even hold their passports or drivers lioen^s up to the came«L 

g -Guesiusers aodplbttestecan ba created overnight 

ii - The barwu Wic h«$le assodatsd with setting up a new (OCM-based) security 

i f\ mm control system within & large cwrjpaay can be avoided, $mct tfce web* 

r*j hosted CKM service Is "sctf-containcd/' easy to acquire and u$e> and can be pu> 

□ chased by lower management but get authority. 

4. Better security 

• Using BinID, user* cirt be aiKhefttfcaied better <Qie bath BioiD and password* for hettef 
security), since passwords are eatfsr to {tefeai and users can give them to each other if 
ttoy wi& 

• WebCKM has substantially less potential for illegal smteplltious access to adminisr*- 
ttve sywsras doing ocThoom, better auttimicfttioo of the adinlrdstrstor , and much re- 
duced requirements tor physical secodiy. 

• Wc&CKM has capM response to maintaining users and foiling security attades (can 
change anyone's statu* immediately and ftnas reduce the risk of rogue users) 

lite Ceattd&ea Smart Card Moid 
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A variation cn the centralized sew model is to use mm eai4$ or ether tokens at each desktop 
and yet requite each user to log 5a to a ccniral scir-er once a day to be synchronized; with the 
equally-maintained credentials files and eo utilize the BioLD auttiertkatioi to the smart card* If 
a user ha* additional need* for Wogoifs Victual iPtesence or Virtual Interacllvlty services* then 
lodging in every day will become a normal pari of the work sdjedsla. 

5. The Pow of CKE/I: Solutions 

Crvpsogniphy and its related element* are geaeMry viewed as merely a utility, the sole purpose 
of "which i.s to provide security and confidentiality to data and voice 3toragr. and cortnnunicEtioia 
TMs is tme of most cryptographic key rn^n^g^nent schemes aid story paioa software applica- 
tions However, it i* not itrue for CKM. Tbe aMiicy to selectively encrypt objects within objects 
aad the gmiing of rate-based access to these object* sets CKM apart from other :«y manage- 
ment metinds, CKM attributes provide the basis far solving basbess commuitkarioas prottes 
in uniquely beneficial ways. 

One-to-Maiij Btstrirjoiflcm 

a CKM allows Ear a oae-to-many disdtruta of ersrypted ob£cts ^vbers die cmw do© not 

vij know the identity aad related access rights of tile many, including future mtttttett wJfota Utt 

f y doffDMB. This provides the basis for secure broadcast of sensarivB rnaaariaL Secaus CKM one-tt- 

!_H ma^y dtstobutiori* can be used far numerous corporate, employee, medical, customer, and van- 

*jj dor appbeationi 

J!* DyHasu c Data Separation 

^ CMrcpsoites&taa^^ Each mtf credential* BS^^tbiaft d<maiii^paKi© 

it dec data from all cither data within fie -domain. This data sepaeation is enforced cryptogtaphih 

S catty, and mi by separate physical £n:hitecatre$. With CKM, data separation — including, layers 

I* wUbia layers (obfcas wtihtn objepfc}— can fee dyoamlcally changed to ffleet arganizatioad re- 

^ quiremsnxs rcgardk* information fbw and access boundaries. In essence, CKM can provide tip- 

q nainic, cryptographicaJly enforced private networks wtthi n a larger organizational network. 

Distinct Separate Reality 

CKM can takft one or more encrypted, object and encrypt them within aaothcr encrypted object 
It is this obje#^ttei^ol&Ct d*&J provides CKM with the abiHry to selectively decrypt ob- 
jects according to access rights previously given to members, 

For eraorcb, .management &sires to post a memoEuidum to all employees on its- taanst web 
server. In addiciou, iJianageiueuL wishes to ioclnde additional confidential iDfomiation fbr Man- 
agers. Wiih CKM, the portioji of toe document intended for all employees would be encrypted 
wiih creduttfels every tnemter m the domain potasses. Tlua portion of (be docomeni pertaining 
to management would be encrypted using a credential limited to managers. When employees 
downlead and decrypt tfie document, all erupluytua would view Eta oorm&iu inTotinatian. M%Th 
agers would alsc^ viierw the restricted information. Witt CKH it ia possible to itave each member 
vtaw an object or objects and mot taow their access differs from others. 
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Flerrffete Role ttod RejEWiisMtr A&sgnmeiil 

CKM 4&ti Uie Sman Tokea do not exist ia a vacuum. Oibsr ptm of ibe system issfrte on the 
member r s desktop computer, and oi the aiminisirator's computer system elsewbftie on tfce ne^ 
wofc Sejven are not required by tbe CKM archftmire, but fce architecture will acoommc<te 
svtrem eerily io the syssera if required. 
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Figure 17. CKM&CKrz2» layer for a typical web-based system is skexn above. It cmsistsvf 
the CKM modules located m the. member's personal computer,, as well as connections through 
fiie Internet to the Ufogon web die for access to the member's keys, certificates and mentor 
pwfife Another critiarfset cf junctions resides #n ife* Ulogon server pr the Wcrkgmup Atfaun- 
Lttrator and Domain Authority. 

Admini&raiive functions may be separated info as many levels m sesded for security and work- 
load used* Ocgaidzatiioits may continue to use tb& included 3 tier syslem consisting of a Domfin 
Aui&ority, Worfcgraop Administrates and Workgroup Members, or ttoy may customize this 
system for more w less d&pai&tion cf functions and level* of djstritoittGtL 

AdministraitEVB roles and responsibilities are urn bound, & prtai io aay level or corapowfit If tte 
standard alignments of Doraail Authority, W$rfc£f<Aip Adminiaraioi, and Workgroup 
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Member do not meet an organization's nwds, applications m ay be customized for other assign- 
rotate Responsibilities rmay be moved up or down the distribution hierarchy, or iotes may be i&- 
signed in a completely different manner 

5. 1 The Pistol System ztti certified etectiwtc mail 

The US. Government, through several Congressional Acts, has mandated That all required 
document submission) to al) federal agencies mnst be dectroitio by March 2003. The omicipatad 
savings to both governmfints and companies are astronomical, and run into the hundreds of bil- 
lions of dollars per year, However, tost getting lire information to the government securely is 
only part of (tie probisrn. The most important part is making iter datt socweiy and eftaatiy 
available CO the people who must access it throughout industry and government. 

The United States Postal Service is evaluating a new secure certified electronic mail system for 
industry £nd government that wiFJ enable the submission of thase <Jocwmea^s dectranically in 
pl&e of trie centarits-oki pafor iBcthod. This system has been called "eProcf* ini&oially, but ^fll 
mcstKkcly have the new name of *>fctPosl Certify" for formal introduction (anticipated in 
Summer of2O0O}. 

% Innate new c^fiede^ 

vu agency wsuld do so th^oug^ the iD temet and a USPS smart cacd. i\ c^oi^ member would 
fn typically possess two sets of areo^tmaJ$~-o*fc foe tit* USPS transport process over rte Interne^ 
i|i ar&c^^e^rtfing to ite domain ofths Fedffa! ajsency tte data te being sent tm The data. 
Sj wild bo broken into objects, each encrypted with a wooing key protected by a specific set of 
<B credentials associated with die agent's domain. If required by the agency, All objects to a par- 

aoUar ^ubroissloa could, bo *vwaff33HT (encrypted) again osins a biCader level of credentials 
^ siKh tfcai only members of (bat domain could open, the compile data package (dome of ^Jtfsk. 
3 may rave been <tesrgmifcd as unencrypted). Ths encrypted paefcage would iten be wrapped again 
Pj (en^ypteD utftft a set of working tey& and credentials associated with the USPS, and the mult' 
|i pry-encrypted package would be seat to the Federal Agency. 

if? Upon cectript of the data package* da* aganuy wuuld "optai" (decrypt) the USPS wrapper, send 
Q rtotfficaticn of iecdpt to a USPS server, whicb would return a date and tiia^amped certified 
notice to both ths agency gad (he submitting corporation (the cemifleU email receipt). Upon re- 
ceipt of the USPS oedfsc&ticn, the agency would open its domain wrapper and send (lie en- 
crypted objects to wteever Ihey ne*d W (¥SWe wilTrtn the ageacy fa- further processing end 
Storage (c/riealry a database management system). 
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informaiicpr stori ihe tfe w*enrte rnritrirg fts vwtor L fte W domain 
and workgroup kfattfly and maintenance krM Croatian date, ftwypfori 
tftaata t/ifti mafan digilal sigrtasure^ ciedanliaJ indiefes, etc. 
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Figure. ISL The proposed USPS cbject hierarchy for a typical data submission to a Federal 

agency. 

All of these data transmissions can. laie place over the Internet as pieces of electronic 
mail— qu xfcfy, iDeapouively, and securely. 

The USPS plans to charge less than typical paper- based certified mail for each such transmis- 
sioq» Tbe taxget caafes are toigine$$-<o- gowrnn^ot, stote-ic ■ federal- govermnem, and busln&ss- 
to-busLTiess. Tha fitst major easterners for the service are anticipated to be the IRS,, the Social 
Security Adffllndar aiion and Qis Health Care FtaaBc&g Adraloimiioin, wtiich processes Medi- 
care/Mfti&tfjiL to «» behalf of 75 rUMq» Americans 

The USPS— the only commercial entity in the US ess isroe electrode creden&Hs for 
commefot for wfefcfe the penally for tampering is a federal Cel wiy— vwW provide and maintain 
tie infrasuueture for certified email usage, principally ooasisting of the leaders and SETtart c&rtis 
and desktsp software for manbexs, as well as the atetinistnttive CfCM fawtfnnatty fox govem- 
nmt agencies and corporate ns. Tha USPS would also provab the certificate auflucriiyfor issu- 
ing certificates to members, aft well flfr Hie Smart card iniiialimion and pfirsonalixaiicm fa netfORS 
r^fcary forresisteriEg new memf ers and issuing cards to item. 

CRM is die necessary USPS technology thai provides the secure fine-grained differentiated ac- 
cess to ainbortzrd information users within (hs. govemmeni and corporate worlds. Stoartcaxds 
mh CKM-enabted functionality arc essential to this service; CorreniJy, the USPS as- negotiating 
a. n&ulfi-year convict with TOCSEC to design end implement thcHCw secure electronic USPS 
system using CKM techaolosy. 
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in 



-•4 The VSPS certified email system would delfrer secure certified tmati & gownmem 

".y agencies and raiurn a receipt of delivery. 

Iri 

T ' Otter garcmincM agencies arc also evaluating (fee "NetPos!.CertUy' r system over time to tfeek 
Uoaimem submissions from the commercial world. 

Oace the in3sis Wo-^epment and govenimMm^javErametit ckxaiment transfer aystem is up 
£ m& namfeg, the USPS could take fkts service to the world as et oompany-to-compeny service, 
!Ji and iikimateiy as. a cansnmer-lo-coiscmcr service. Oiher post office agencies in many countries 
p ate abfcady iJiteiested In aOopiJn^ dils technology, and iraay may fallow ite USPS's lead and uf- 
fersimilaroT idemtol services in tfeeir countries, Sin^CKMcryplciJ eK[»)fT^a3BTn4tte 
world, there shoald "be do legal or actional security issues Solved in lapiilly expanding 
USPS/CKM technology to the reu sf the world Obviously, adoption of this CKM- enabled tech- 
nology by the world's post offices vOuM establish CKM ss i de too as well as. off id a! standard 
totsteeote. estofiitabife, centfted access to InformatioiL 

6. Conclusion 

CKM is a pow&rful key msa^eraeut technology that has su&umlal advantages over ofcer more 
co^venticiaJ &ey management $yst£ms T CKM 1s flexi fete and may exist with said use the stiong 
attiftote&of jffl&lis toy In&WTOtyrw, §uch as MeraifLcaifon and autaeDiicaiion, to fo/tu a supe- 
rior combined fc&y managOBent and encryption system. 
CKM brings substantial wtvmge* to organizations, including; 
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• Distributed rote-based access control: CRM's distributed role-based access- control, ane- 
io many dfcmtaion grig tiatt separation oluwoctirnstic; dittos organization to t^riheii 
crypto security to suit *s way their mfcromtonis crt&Oftl, distritaasd, cansraned and 
stored — a mnch better solution than Hie centralized, an>oto-onc nature of traditional pm- 
lic key cryptosysieras. 

• Fine-grajKd ar ass: CKM allows documents and files to Ira s^jlit cp into separate objects, 
and objects may h™ (Hher objects widiii them. This capability aBnws different parts of 
a documemt or 3!e to each require different credentials for access, and thus allows orgairi- 
zations o> precisely map information access to the way in which the information naturally 
flows wiEhin tte day-to-day workflow. 

• Key rsctTOiy: CKM* s architecture makes it possible- for Domain Aotliorities to provide 
access to -encrypted Hies for which the key values have been lost by memh&s. This has 
two tenets: (l) orgaaizatloas can encrypt their critical inforraztioE withem fear of loss 
dec to lost keys; and f2) CKM satisfies the anergpney access cesdfe of cxonjiiai investi- 
gation acd national security authorities (a ccrect order can compel a vroxkgroup adminis- 
trator to recreate- the necessary fceysX and is tow easily exportable around the to*& 

Si 

« * VerAr^ry: CKWi^exUem^ 

HI fftstrueittres, mid ran be implemented wrA smart cards to hold member profDcs, or vlth 

j U a WebCKM saver (UlogonxomX ArcemitJvely k CKM can be used without a PKI, and 

still temfdn fieri hi e sad scxLihte. 

.= • hidustry stanch: CKM is mAN^X^ 

gi us Postal Service for a new secure certified electronic GiaiJ system thai will he used by 

government and industry to eriabie true paperless co^oiiirticaiom. Since postal tystems 
□ tmj$t be ccmpa^ble around ffie* world, mbes nations may also he adopting CKM-ftased 

t?i electronic, postal services. "Tkis would ma±e CKM a waddwide de facto standard that u iU 

^ iitfurs its presence for some time to come. 

jg • Pcflfojmmce ard Scal^Uy: Public key crypwh^adeNIl^ge^waomip^ 
p pofannarice, and centralized sectmry/pemissions servers typiceJly end up becoming re- 

source iotentiw bout?neci& as welt as single points ol failure. CRM's cryptD uses pafeEc 
key crypto very sparingly, aid the normal symmetric working key encryption processing 
J* executed on (he member' desktop concputer, aid net on a centralized security or per- 
missions server. This rreans that CKM crypto is hundreds of trrne* faster than traditional 
public key-bas&d crypto sysems, and perfomwnw bofclenecfes are net likely to appes* *n 
the system, no matter hew large it becomes. 

A flexible bey it anagexeut architecture would kteitty Support symmetric eitcryplioa, Public Key 
Infrastrudoies. CKM. Hese three tecMologies. blended togeta piopw ly, can mm all of 
the nsquteffimts of secure etcctroifc commerce around tlie week). Tins kind <sf encryption can 
effectively address emerging privacy and liability issues. The closed domain nature of an esfcV 
Hsbed CKM encryption boundary within a business interest can. separate data effectively and 
easily delineate liability. 
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A taincss can now select key manjgerneat methods that mote dcseiy reflect their security 
needs. The response to these demands focuses maze an rclcnitig the proper mix ntbctf than ££• 
lecttng beaten competing eocryptJDi) technologies* 

The fine-granted, objea-fcased e^yp^oncapabnicy of CKM provides ajnfitenrialMy to ihs rail- 
Jims of objects ji am or^ajiizatkirMil &tafeaae of mfonaatiati, and dlcws large organizations to 
put their raisstciKfEtical ittiodttatioti assets 4iroctf>» on the aeworic for even more efficient ac- 
cess t>y tt.ejr mou$acd5 of employees, panneis, vendors and customers. This in turn allows a. 
complete severiog of tte dependence on paper-based information transmittal and storage, whkh 
in torn will finally lead us into a trus electronic coiamsrw futme. 

Appendix A: Standards 



m 
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Appendix B: Export Considerations 

The White House recently announced a. fttexttiofl of US encryption expo* 1 poKc>\ Although 
specific regulatto have not beea issued^ the following rate! are anticipated: 
Alter a otte lime review and ipprouil, ^coaimefriaT encryption pfotluets with any tesy leflgtfv 
my be exponed wiihom restriction to customers in. most countries. There are some EC&trfeted 
country <festina£ians, mostly for national security reasons. An annual reporting to (he US De- 
partment of Commerce listing the identity of foreign purchasers may be wpritei See foe De- 
panDEbentofOoianierce. Barcaa of Export Control, 
hi cpr//wv^i>yfl.dQCBOv/EnavDtiog/Default htm on the web for fddter detail. 

Since CKM encryption technology features 100% key recovery by rJia system owner, TESCOC 
has been granted m tinresiricied export license for its CKM-2000 product line— except to pro- 
hibited country destination*. TECSECs CKM-2000 femuy of prootels «se* Triple DES algo- 
rithms and up & 392-Kt (symmetric) bey IengUKBawd on CKM's 100% i&y recovery feature, it 
is befevBd that fatafe C&M produce, after cma-Bms prodect reviews, may be exported with any 
$0 key length and my algorithm. 

\® 

In 
Si 

l-l. 
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1. IrmtrodlMCtiOEi 

AS prestsnt. the camrnercjaJ electronic commerce world seenus com mil tied to public key- based 
(asytraiietric) cryptography r?or iu digital signature and Isey exchange needs, and syiTtraetrtc 
cryptography for actual built; eticrypiton of information. 

PuhKc Key Infrntruciures (PKfe} are very good for moving htfarmation front point A to point B 
securely, and for providing eocutc (tiShemicmLon and n on repudiation. However, modem PKl 
technology si ill does not completery satisfy the problem «of property scoessingth^ information 
once it is aiTcEy in residence at poim B. This is a prcticukirly important problem for one critical 
cbss of umcs: large organisations such as ^verrtmbftiagjincie*, educaiiona] insiiitjiioztt And cor- 
porations, where; thousand^ ofusers need instant access K> millions of pieces of information — but 
where each person should only have access to the information io whish he&he is entitled. 

Coroider this problem: a. specific view (nepart) of selected data fields in a fotge database contains 
criltcal pieces of informattoa thai 208 people in Sh* organization need lo electronically access 
tlmwghotn the month m ordsr to do their job*. Two peopJe are responsible 1 for updating (writing) 
11 ie infoniialton based upon a periodic armies of other dsita. htrtllie rest are only authorized to 
read specific subsets of llw daiu fislds obtained in die view. Thousands of other people huh* 
orggni nation are ««t authori^d to accas j this data vie«\ fcut in many case? are authorised to. nc> 
oess other dam view& in this same large database. How does ttu organization make the in form a- 
tioii available io tbc people thai need it, while still denying access to everyone ctoc? 

Pubfcie.kcy crypt o technology may provide security for transporting this data,, and authentic a£mg 
the jtfcople ■vtfh© >y?ujt & access, it, bMt it does not solve U*s problem «£ dififerejrt^ted acc<5$£ to 
data fields for those 208 peopU. 

One way otf solving fh» problem is to- have a ^oc-urid datiibase field containing, the names 
(or other identity) of the people authorized to access each data field, al ong "witli 3 ihijd 

Md Specifying Whether each pefsuti has tfcdd s Write, OriieadAvrrfe access. Bui this ap- 
proach, ii applied throughout tiw database, would make it impossibly large, and it doo&vt 
work for non-dnrabaso information ih& is kept on other ficrvc^. (e^., memDs, reports, 
spreadsheets,, pictures, etc.). 

A variation c?u the atove is to httild a special security server called n Permissions Setver? 
ami. keep access .rngtriH for all usera in ita AtcnriLy database. Tlrufu whan ausar requ-&fl*B in- 
formal ion from a specific view of the data in the corporate database, the requestor is first 
sen! to the pennissaoas stiver, where he/she is ntttheirtLC^ted end 1J» ^iew request is 
logged. The permissions aerverlheii checks the requestor's ncoew rights- m its own secure 
database, r«tri#v*s iht LofofmAiioft from the coaporaie repowi-My diid pre^eniK it io ths 
us<r. However, tho drawheck to this approach is tfiat the pcjrrr/i&aicn server is a. single 
point r>f fftilu^ as. w^ll as h pei*iminuoe l»owTisri«K'6^ as fill people iweGfifting dutn tnttsi 
xjiieue trp k) ihe pisniiissiaus server and typical !)' perform one or more public key mUheit- 
lica-tiott etcpi—cacli of which i* a computationally itrtcttsi^ tiftkjhftt substrtutiAlly re- 
duces system throughput 
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Another approach to solving this problem would be to encrypt cadi field and send ali 208 
pccplc the appropriate symmetric encryption keys, and cl imir^te the peimisaiona fcsrver. 
However* ibis solution will abo grow to impossible key management proportions if ap- 
plied to all of tie millions off data fields and thousands of people wbo need access to 
theni. 

Still another approach — and the one currently in use at many goveromcuJ agencies— is to 
maintain multiple databases of portions of tbc same information, and allow classes of us- 
ers to have password access to specific databases (e.g., an adnunisjirativc database, an ex- 
eclitive database, a.scieiilillc database* A legal databASe* etc.) This approach provides for 
distA separation acid veiy "large-grained 7 " conditional access For a small number ctT func- 
tional groups, bat is expensive to sal up and maintain because of the excess duplication. 

"this need for "fine-gramed" differentiated access is generic to targe orgmjiratiocs and is Dot wall 
solved by conventional PKI-bascd techniques. Traditional PKI systems have Uwee major limita- 
tions: 

• Coarse-gratneri! access. Public key systems do not provide a good one-to-many solution 
to accessing parts of an information repository. If a incmber boa the acccr g rights to read 
b fjl^ docsmient or database view, Ms be Iws the right to wad oil of it, and noi jiist some 
of it, Tbc idsal acefbs comrol tedtnology would allow differeat poo pi o to somehow view 
diffment parte of » single report, p4»n, Artftbas* ssiy, or fmm^\»l sproachhod;, »trtd d«ny 
thtsritt accass to other parts. Traditional PK I cannot do thi s. 

• Centralized security urtjutl Icsitkrn. Public key systems have jl negative impact on com- 
puter system performance because of the couapirtatiooally intense nature of public key 
OKpoiictuiation. coupled with the centralized nature of (1w security checking. Whew secu- 
rity servers or permissions seivers are used to authenticate and police user information 
awew, us Uw number of users and pieces of mforiniitiuii in lire system grow, they in- 
variably become performance and s ingle- poinUof-faiUue bottlenecks — tiiey airaply do 
not scale gracefully, 

• No $?nit>daiiU*c*! cn^ntifds. PjCJ $ysterna do itoi comprehend the -problem of providing 
credfiirtials to people that would define then* access rights to information- That! is, addi- 
tional PKI system can Authenticate soroeoi>e 3 but cannot easily solve the question of what 
information in the corporate repository that person is entitled to either create or access, 

But now, TEC SEC trie. b«5 invented a new distributed cryptographic kjty rumiagarncnt techrol- 
ogy that cfin efficiently solve the differentiated ndbauation access problem, and tlius provide tbe 
final piece necessary to satisfy both industry and government with regard to electronic iuforaia- 
li on access — and it is exportable wjrh any crypto ajgorilhjn or key lecgfh. TBCSJ3C has several 
patents on thte tecbnologyj which is called CKM* for Construcuvo Key Management* and fc 
partnering witb Ulogoacoira wbo will build a web-ccwlric CKM security service C'WebCKM") 

that Will bo available *> aJI tattlOirtc^ On a rtiOOlhl/ "trtailal" IVir u;. 

Currently, the United States Postal Service is evaluating CKM technology and a multi-year con- 
tract with TFjCSEC to provide a new CKM-enable*!™ certified electronic mail system (infernal 
code name of "NetPosl-Certiry") which will be used by million* of U.S. companies to transmit 
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mandatory governmental reports and other infonnation to Federal agenc fcx. Meanwhile, other 
largs governmental aganciefe. harve discovered CRM techrjotoqy. aod art* queuing up to use itfbf 
ilieir own internal information access needs. 

The purpose of this paper is to provide tine reader with an ovcrwow of the CKM technology and 
its ^plications via a V/ebCKM security semCefrom Ulggan.cKjru, This paper defines concepts 
Hint arc being developed and deployed in products from TECSEC and U1ogou,ctro. Sec 
wtvw ieoEcccoi n and w ww.u1 o gon . coin far more details coaceaning current product cdTeritigs. 

The assumptions, made in ccmtrwtion of tlds technology overview er©; 

• Tha reader has a. fundamental mncteretanding orasymmtftric (prtblie-kfiy) and syinmatric 
cryptography. If this is not mis, send an email message to wfaivvftehgulj^tt.acim and he wil I 
smd yoai aii executive tutorial on cryptography thjit is easy to absorb and thai will allow you 
to understand the uideriying cryptography behind CKM. 

• No inference should be drawn that TECSEC is represcjitina CKM aa having approvals by 
"ovcmmcutal cr independent bodies other than those stated herein, including enrrem approv- 
als jo key U$ Oovernmerrt gia^Het infonnzttiqii, 

• This piper is a. summary nnd significant details have nol been included Should a reader need 
to have a more detailed explanation regarding CKM or ib; potential for a spedTio application, 
please sontact TECSEC Jr¥5orporated cm' Ulogon ecm, 

U CKM Technology: A Fast Overview 

CKM is a distributed cryptographic key management system consisting of one or more domains. 
Workgroup Administrators determine *hich meuibdr& will bo allowed to participate In each do- 
nvom by issuing profiles to eadi member. Contained within isach profile are each member's ac- 
cess rights thfft allow him or her tt> partiJipate bs*sd on their, vale hi tha cntgpatzmAon. 

The. key nscd.ro ericrypt a ckfa object in C\QJ is a symmetric ksy called the woi-timj key, typi- 
cally a 3-ksy tripb DES key, Tha CKM process employs Ihrae key values that *r& ussd to con- 
strue* th© working key: a Domain (feoy) vakwv a Maitftenancis (key) vahi** and a Kandom (key) 
value In the most recent version of CKM — Version J.O—ihc mAtototanoe value can also bo se- 
lectable as aire of -multiple (fiSerejrt values. 

The ^omam value is esed a& a system key thai gives system access to everyone in the <N*rain, 
(hi large organizations, domains can be linked together via trusted rdftlioashipa, so no organiza- 
tion is too large for CKM tecluiology.) Maintenance values ore used to control donmb member- 
ship by ioiiicaily updating diu Domain value lo nil autftomeclaiftartb&is- Tliia. process, tfiuoltsif 
Workgroup Administrators to climiitata ur.detirablfi tntfrnb^ftoin fiiluro aoce$s to the system 
by simply updating flic maintenance value to only cuiTctdry authorized individuals. II. also allows 
preoisQ tniw fran^GOfitrol ovar aqeo^s to data fpraroliival re?fe^re^rs, sistcfl th^ qan be givijji 
only tlw rnainicnaiicc vAhtcs for the tim* ptii iod(a> to which they are allowed access* This vastly 
simplifies the lypacaJ public key mlraatructure problem of publishiiigarMl mabttaiiung: a cfirtiti- 
catc iievocftt ion iiit. 
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Hie third value used to create a working key is the Randcrai value. A new random value is auto- 
matically fcciief atod each time an object is encrypted, nuking the working key a. one-time key,, 
unique to an object Tl» working key itself is not stored, but 13 created at the beginning and dis- 
carded after use. ft is subsecpuetitly recreated when needed, but jnly by members with the appro- 
priate -credentials. 

To segregate access to data among dififbrcxrt groups of authorized members, the random valnc is 
further protected by ccctrypting it with ether keys, called "credentials. ** Applying credentials to 
data to be CKM encrypted defines the rjadetr&ip for each ottjeet. Only those wfth all the creden 
tial key pifrCei Gorfesjttndij^ to ail Lhb Oroileiltials Used in ettCj^plingfhAl object can decrypt the 
random value necessary to decrypt the object. 

A member's profile, containing their crcdeuiials, the Domain and Maintenance values, the 
header encrypting key, algorithm access permissions, and dooiahrapeciftc policies h cenlaiited 
in one of two pieces: either on a removable cryptographic token (e.g., a smart card),, or on a een- 
tral ULogcn server profile maintained t5jr each member aatd available over any Internet connec- 
tion.) 

CKM allows tho distribution of encrypted objects to a bread audience where the distributor 
knows neither the identity nor the related access rights of ** well member of the pudiesnc*. 'jflrfc 
provides tfie basis for the eecure broadcast attd storage of sensitive material ©vera network. New 

jr^mhtfrs trt tha afwUwBC* flr* flii^hoilZ^d a wording In th^ST 0?*d«?n.ti*J.S AS Wf)1J. 

In short, CKM allows organizations to do something they cotdd not do before: make their re* 
positmies of critical, ivfbrtnation cnxrilabte to members over the Internet — x&cnjtdy and effi- 
ciently. 
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Th$ CKM® Gdriciept: Sfecuie; HVQf Granularity, Rdfe* 
Based Access to tata^ttanslt or Data-At-Rest 
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^TrtTrKefK ^aTTipif: ifr a-tcvn frfWri ti si ^-RCTintj^re. ,^frfrase ^tit amiti^ med i bat -infiHrm aticiii . t Tsirig 
JJI^^j^e^fl^^vi'e^v p|$ : :6£lecte4 $8t$£fctt&-^gr s^tee^.^f ^ fceldi^ . 

GKML is- &&ig;ii«;.d tb lie^jJloy til . *s fceuurjb' By sbtaii . Tliisi liieiii ifcwlijilojiii t£ Iw 6V&eKn seeuri ty 
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computer, or kept inside a secure Network server aiad available wriy via "biomctric authentication, 
(Utogon.com)> attacked have .tittle capability to attack. 

1.2 A Graphical Analogy 

Th* following graphic illusira&s an analogy to CKM ihai shows lha roles of Domain^ Maim** 
n.ainc$ and Random (kay) values, a? we£ ailipw cse&ntsal keying materials are appEed to «ojv 
struct and use the working lecy m Iwth creation and access time. 
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CoiutnicEive Key Management (CKM) is a. process lay which an -organ i 2 alien can manage tte 
flov? of and access to infomiatiom at the basic- object Jcy*l, CKtM is a cryptographic key jnan- 
pgenieitt technique Ihflt embsds access attributes and other selected paraineters within the object 
itself . Tire archrtsclare is a ficyiblc key tnan^agctticiit system 1hstf incorporates the strct^gtbs of 
both asyaimctric and aymmetric eaicrvption elements, adding in the unique CKM techniques that 
bring the fro© grained role based differential access. Included iatbtf azriiiteciurc is an encryption 
key gftttnUiOrt protoSSS based oil (WO sets of key typos: \¥i»kiii^ keys.drtd credential keys. 
Workir^g key vahiea, credential key values, a cornbiner process to assemble these values and key 
cost portents, and an itifrA&l met Lire io support llw dej u-ibution and management of the geo orated 
etem3nts w what CKM technology is all atxw.it. 

GKM is a key management architecture that is available.-™ botfi symmetric and asymmetric 
models. The CKM Uint model is based on . a suite of financial community standards — the ANS I 
standards. The founding GEM sta^datd is X9.69. -rrainswcrk for K£y Maimgeriient ftilenslDjJS" 
tor ^ hid i iho CKM design find infrastruclttre architecture is nicdelad Key recovery 13 inherent 
in Cw dc^igit shy©* CKM allows tf>e System CHvnar ! 0Q^ reom'ery ofeftcb encrypted object, and 
no third party key escrow is required. 

'Rift C3CM k*y innfln£!S*nT:«n? -«rr-hiipic*ur^ n?.*»y h» vi fl who!* sysl'^ > *.i<l«!nSfy«tf30??, 
autlienUcadoiJi access control, and encryption cycle (supported by a mafiagtsmcnt irdrastructtai^ 

Soone teirniiiology is needed to understand the underlying process. The* key used in the encryp- 
tion ocf an object, is called the Waiting Key. It may be used as a session key oj- a message- 
cncryptjig ksy that is required by a symmetric encryption algorithm such €9 3DES. Tlw working 
key, constructed frorn several pieces of information (called values), is. used to initialize a sym- 
metric key encryption algorithm, and is then discorded. The same pieces of information used in 
constructing the working key Tor encryption are used to reconstruct the wwkingJtey Tor oVcryp- 
tioa The function thai combines the. values to create a workffig key is called fba CXM Comhinar 
and is central to the CKM eacryptfng process. Member id erriifK; fit ions* keying infoiin«tipii and 
credentials are stored in a large file called a Mem be- Profile, yvhich typically travels with the. 
member in a Kmart caid or is. accessible over the Internet in a ceuiral Ulogcrucoirj server flic. 

Access control is pro vided irrCKM by applying credentials an the encryptMn of keying infbmiar 
lion (hat is embedded in the object ilk heeler aUachetl to the object. Asymndelric values are as- 
sociated with each, credential set. Read/write separation is cryptograph k ally Available with sitch 
an asymmetric Icaty dsnign, Read. aoce$s in e<piivaJont to decryption rights and wrslaaccasg is 
equivalent to eanryplioii limits. 

tn addition to access control, a broader key imnagcmcut xtrstegy may include a configurable 
idculrficaliori capability and « ttwroVparty trust nntbc^ticatioii cftpability as iJluelrstcd in the 
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Ofcgect-OritrteU 



CKM 



Credentia ls may be wsociatod whh an appltcatkm thnt defines one-oruioro member identity ele- 
ments flitch & bionietri.c Function, a smart cord tdetitrly ; or n FTN7P*8swor& CKM is tuced to 
bind the identity elements te an encrypted, objcol through aii enoryptioii process. The l&A (Iden- 
tified ion & Audi esiiicni ion) object may consul df a PubJic Key InjffcuLirucuire (PKJ) fun«ior* 
tiwn con &nbentfc?ifje tlft member to ths network and other members, and ortjuer fcnetiom thst 
may need to be stored secretly and which are included in el Member Profile* The essential part of 

PKI isr a Certificate that iriUludnfc i i/sHliib!* distal Mgrifi1i±r* f whioh :s ilfcclL. a rniith«maftiiaal hash 
of information thatis then encrypted tlirongji an aEymmelric (public key) process. The PKI 
authemicarlioii support is managed ttorougji eilber ihs smart card or the efenlral UlogcnLooro 
server. 

figure below iJlusLintes a U 1 0300. corn Rcrver and ita interaction with a configurable Identifi- 
cation and Aulhcnficfitf an (1&A) process; 

1. Two types of ijs^iimetrio key pairs identified ns jGlcbal and Membcnliip; 

2. Payment rUnctiQas: and 

3. Data, that as a pliy&ical access taction. 
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Figure 2:ULogott.<a&tti: av&tti* !fc? cohiprGhemivG security 

TheULogon.ccwi Member Profite is used as a brldgi to muhipla atuhamioaiiaa &&& encryption 
platforms with vuyifeg demises of encryption enfor-cemout and binding. 

2,1 CKM Domain 

Under a role-based Access control system, rights -ftpd permissions arc assigned to curganizarttooiii 
ro 1*S, f athtf than to cash member. As ftie^^jberii , assignments diAiige, their rights aittl pennis* 
si oil s : are ofemged to rofleat Lhe.ii* new role*. CKM, wiih h$ nioriiod of using credentials reflecting 
uifomimion Hou and boundaries^ is -a preeminent example of iirolB-based system. The CKM do- 
se gn QjflEbrB a method to antic ipst© data boundaries vritfiont knowing member identities; 

CKM Administration is based cm several core concepts that apply to any CKM feitup— -dwniT 
some are transparent This taction provitka an introduction to encii cGlbeae critical concepts. 

'Hie highest unit of organizaJion in a CKM System is the Etymain. A C£M J&onwnbi is fUmitjue, 
independent entity thai includes nil CKM reaoxtrces needed to function on its ovvit. CKM security 
policies, ^d-accdia^, told roba arc fill determined fit the domaifl l^vcl. 

Although it is the largest unh of organization supported within CKM* domains arc fully scalable 
to fl wide variaty of Heeds. A CKM Domain may be m targe as an amira emorprisa or at small as 
a sib ale member. One type of Application might, for example, establish a Luuqne domain for each 
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member; while small businesses wonld likely establish a *ingle domain far the company, and 
larga enterpriser would eslabHsh many domau» foir majar drvLuoas. different locations, or other 
GrgamzattMial structures. 

While dou-ains -or© freest anciti^ mid in&rpcndeiit, they dc not n«d tc be isolated CKM Dcmnma 
may share access rights and privileges with vlhea domain? in a msted rslalionsftrx Additionally, 
members may participate as mcroters of niuliiptc domains even jf a trust ruUdionship between 
the domaks j^aa not been established The GKM Domain may have a diroct relationship with a 
PKI Certif:*3!atc Authority (CA), if so desired, 

2. 7, 7 Trusted Domain Relationships 

A CKM Domain may provide specified access rights and privilsgcs to members of aaother co- 
mahi by establishing n trust rdatieiwJrip. Tfie trust relationship is eElsblisli&d woeii one domain 
provide s a subset of its CKM Credcotiate to another domain. Credentials are shaj-ed only al toe 
domain level and may nol.be soaot direefdy to niemtxire of aiiotUa* domain until a misted relation- 
ship has been established. Once trust has been csitabliahcd^ the iecood domain maintains and djs- 
Iribuies "ii^poiiBd** eFed^rtialMising its own methc^sa!idpo!icw% and ihes« cnatfejitial^ ^re 
sored in the same Member Ptqfite as r>tri ol" the metier s credentials. Onse di$trihin$4 mem- 
bers of th e sacond domain may us© the in) potted credential srio share iofbxmalton -with memtans 
of (he external domain, butthay coutitmetobe bound by the policies and procedures of the do- 
main in which thery hold raembcrehip— IheiT Lo^Qr. Domain. Ifa PKI CA is included, in the key 
management architecture, a iliird-party atnheniicatimi niudcl may b& Added to the owrall irost 
relationship. 
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An individual may "be a member of neveftd CKM Domftuis tfegtmllsaft of -whither the dam Aim 
have established* trust relationship. Thai is, two or more domains may grartl membenhip tode- 
pemdirttly fc> ihaaame individual. In ihk eaad, CKWsces the singj* individual as sevcn^l mem- 
bers— one for each domain. In this type of entrusted reiittieoshtp, tte member will log onto each 
(tam;iin ino^pfindciitly, use separate Member Prttfrles for each domain jukI possess credentials 
only to access uifbrmaiioji witlim that dsmain (and with Its tneted domains.) 

Note: Some storage mcdiunrs (such as Smart Cards) ciureaitly do not ri jr/e sufficient space to 
hold more ihan two or three Member Profiles. TheTetfoj*. iJbe abilhy to log on to ranch ptore than 
two or three domains may require thai additional cards be- carried by the member. As time and 
somwoitductor tcdmoJogy moves out, however,, it is antioipaiod lhat snaart card memory sizes 
(ciirr^mly a maximum of 32KB) will inra^^ubstanliaty, thus provldingromnto wiry a Rig. 
itific&frtry larger number of Mftmbar Profiles. The WebGKM system, since it d£peiid& upon a 
ectitral s&rver -to hold all pra£le&, does not have any practLcAl limits oo the aumher of* profile 5 or 
ilw size of iray corresponding data in eaoh member's ^connection profile." 

2. 1. $ Domsin Authority 

Tho ~>0matn Auihocity (DA) provides top4evel Biann^etriewl to a CKM DiHirao. Although some 
decisions irjuirt fee made by the person or perso^.essurniiigthe responsibility of the Domain 
Amltcwiiy^ many DA functions may bo ^mamaied. 
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Typically, tlte Domain Authority *ets up tlw domain by pafomiing tlic following ;runcti,ows: 

• Nao»«s the domain and creates rts unique D&jiafn Value (used m cryptosraptiic functions ) 

• Establishes arid Up<iaw S- a number Maintenance Vaht&s (Us«4 .fox revocation Atid la 
cotvtrol mfonuation aci^&sto apecifio Lbne- windows) 

• Seu pol fey defining ihe outer parmrustoirs of CKM uso; including wli ether member Pro- 
files are hard disk-resident, server-resides (WeoOKM), or token-* esidetiL 

• Establishes and digitally si^is the role- based credentials iaed by CKM t<» cryptogiaphi- 
cally enforce access control to inforaialtnn 

• Selscte mid opticiuilly rename a the crypt ogr;rpliic dgorfthma available in the domain 

• Selects and configures iUcnti fhciUiQn £ AutfienUcaUon vbj«vU #v«i labte in the domain 

f Registers \vorJtgrottp3 and their admtnistralcis tthran^i which credentials arc distribnt&d 

• Digitally inrffridii&l membership keys and aitUlorizalicn* related to C1CM efu^lV- 

• Registers and digital ]y signs CKM-enabled appiicatioua 

• arcs aivl riterriftnras Workgroup Prcflfex dafhiing: a siftmet of cneftemialKj algorithm 
permission 1 } and policy settings »vai table to each workgroup 

• EMcinifucs liusl ndatiotethipa wiEli oLLci do:uuius 

GKW! allows nicmbere to receive credentials, policy setting*, and &\g2nfhm penruKsitms only if 
signed by -the Dornaiu Authority— even if some- of these values aw imported from otfter dorroins, 
Mtaxbtnts ae bound to ihje Domain Amlioriry v3a tHa DA 1 * CKM Mgmbcf&hip Kay and certifi- 
cate issaed to the member* lira OA's CKM Membership Key is then used to verify the DA'& 

jsiijtVil HJC« v/hrm ^rtjViriP. tfjedAtftiat* AfyA ratal ad tndt^f 

£ 7- 4 Domain Pmfile 

A Domain Profile refers to all credentials, policy settings, and algorithm peimisskms eslablislicd 
by ihs Dotnain Authority and available wiihin the do maim The Domaijj Prefde also includes the 
domain l 3 name and value, 1lie maintenance vnlue, and other iufonnalion idaiUxfyiug the domain. 

22 CKim Workgroups 

A CKM Domain consists of at bast.onearul usually several workgroups. A worl^roup clusters 
members (ar ftmaller workgroups) based -on common needs and rights to information. 
Workgroup* are often established to parallel departments, locations* projects, or other natural or- 
ganizational subdivisions. 

2.2 J Workgroup Administrator 

Workgroup* are typically managed by a Workgroup Administrator (WA)> "f"h^ r<$po*dTOies 
peri&rnred At inls tow.1 may by a pefton inieincicig witii soefiwara, or tnay be autoinAttd la 
pari or hi full 'iliese responsibilities typically include the fo! lowing: 
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• Rettni Hg policy settings £as allowed "by the BA) to provide further restrictions than those 
originally grafted to the Warkflrorcp by the Domain Authority 

• gistortrty lite mdivkfuaU who b-eeomo .the meiiijwfs of ihc W crkgrou p 

■ AsU^ing.ifubsels of credentials and algorithm permissions avail nblc in die Workgroup 
PtroSIa tc individual Member Profiles 

• Signing, distributing aad updating A tenter Prcftle Ifpd&estzi Workgroup Member 
2.2.2 Workgroup Profffc 

T?is Workgroup Profile contains all credeuiials m& Algoriihm permissions oytwlaW-e for cf ipstritn.*- 
tion to the members of a specific workgroup. It also includes the policies govcrniag the 
workgroup's use of CKM. Workgroup PixifileB m$y differ from other profiles in the same dc- 
maiu — defining the unique lights rod needs of each group. Workgroup Profiles are created by 
the Domain Airttoority. 

2.3 Member Profile 

A Kfcmb&r Profile includes the credentials, rdgorlilm peimi.'ssioofi, and enforced policy settings 
assigned tt- an individual by n Workgroup Administrator. The Mcinbtr Profile also includes the 
ijjdivkluars private -asvmroeuic CKJWt Membership K«y used lc decrypt profile aiud other men** 

hefship information sent to the member by the Workgroup Administrator Tlietneniber^ "public" 
CKM Membership Key is- retained by the Workgroup Administrator and is not posted for pUblic 
use as in a EKL The Member Profile also includes tb£ "public" CKM Membership Keys of the 
Domain Aitflwrliy *md Workgroup Administrator. A\&& 9 in WebCKM systems, ft will ij&o in- 
clude one or more global raid workgroup. iiieiiibersliip PKI (iodrvktiial) private toys and digital 
oeifiiicsrtefi ased for encryption orsigpiiig in WebGdCM and other cryptographic sysfenis. See 

Figure % 

Members may receive profile and membership inform atioo from the tingle Workgroup Adrahv 
istralcsr whose Membership Key has been issued hi the Member Profile. All updates to Member 
Profiles, are signed by the Workgroup Administrator (WA) and must l>c verified by the WA'i 
CKM Membership Key held by the member. 

Mejr.oers way be -aligned to a different Work^opp Administrator m\yby receivings new WA 
Merxteihirj Key signed by the Dqm&lu Authority. Additioaally, ctextentiate may be ufldaied or 
added to the Member Profile only if s igned by the Domain Authority and verified using die DA*s 
CKM Membership Key held by the member. Iti this manner, each, individual is bound to a speci- 
fied 'Workgroup ami a speciEed dciuaiiL 

2. 3. 1 Prvfite Storage 

A Member 1*10 file may take many form J. It may be glare d locafly On a member's workstation, on 
reiiie vable storage such as a floppy disk, on a network server such as Uloson.coni, or on a physi- 
cal token such «su smart caud. The form of the Member Profile b configurable by the DA, Ojw? 
of iko policies. carried within The profile detertrtmos; whero profiles ars allowed tc reside. The 
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form of the Jdenibcr Profile is also dynamically scalable. i,e. if the profiles arc nut found in the 
one location, thsfi CKM will look to the next location until the installed Ilsn of locations, is ex- 
hausted If a profile is not found in any of the allowad places, llien CKJd will prevent Ihe mem- 
ber fxim initiating n seaa iojl 

ZATheCKIVi Process 

2.4. 1 The Security Paradigm and Data States 

Adequate security is the condition at which protective measures have been employed that reduce 
the nsk of loss to nn scuaplfjite operational and fWncinl level. Total effectiveness depends on 
Uie synergistic interaction of various system features that reduce threats frem inside And outside 
aUackettt aodVor other vulnerabilities. Ttis synergistic utL«nctk>u forms a trust model TLml is. 
one $ wsurrly mewswe alone does not provide adequate seairity. Only when all any taken toother 
does atleqiiaic sicaiiiiyrciurl 

En<syptipn is-a tool (hat mitigate csrtai> v*i|neraM ilies and thus reduces risk. To form nn effec- 
tive information security tnisl model, & member iniisL be "battiid" sOnieha* to tils data he of she 
is Bjrhorh&d to access CKM technology bagins viiJi strong IdaitMrkaikni that tj tbeji direct Jy 
bound to Hi* encryption of objects via a crcdehti&liiig process that in ubcu ensures the integrity 
and access control af the infariiiirtion being protected. 

Since CKM is client-based, ihe troat model may be scaled to many members: I ) by distributing 
tiw workload to member workstations (desktops), and; 2) by making the cucryprcd object the ba- 
sis of triistodjtKficaiitMi instead of anetwoTM&sed servei, Thew are iyvo m «W differences 
b&ww&t CXM and ts admaAzlPKJ ' ttntctiztat. In a traditional PKJ system, a frojtt-eud server 
protects mcess lo the data, end tlw security focus is on aiitbcnttataiig each requesting auernba; 
both an to whoin h»/*h« And a* h> what, tafahflarkm Wslw> may hatfft accrts* U% WHh-CfCM, ihA 
typi&tf PKf authentication step with a centralized security server h mi required. Once profiles 
have been distributed to membets, «icrvption and decryption h controlled by individual nicaiber 
profiles, which typically will cither reside on a smart card or a web server. 

Data may be viewed at any given time ef being in certain states: 

1. Data at rest: data objacU are in a fixed state in a storage capacity. An escamjjlc of this 
stwie is a data field in a large centrally located database, or a series of doqamiertfe reside!* 
on a neitvorls server. 

2. Data in traits it: data objects that arc be tug transmitted hi a coroimuiicati on channel during, 
a period of lima, 

3. D&ia in process: data objects that are in stall; memory Areas being tnrmrpulated by a 
computer operating system and/or one or more applications. 

CKM can provide a key maiiagemetrt arid -control achenic far both dahv-at-fe&t and data-in -transit. 
Data-in-process security is dependent fcr Ihe most part on operating system and bardjware-btjsed 
control medumtsms. 
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2. 43 The CKM Combiner Funzti&s 

The role of the CKM combiner is to Croats a working key from the domain, maintenance, and 
random vafctcs. The working &ey encryption process uses a stancJflrdized triple DES (3DES) n|- 
gorrtbm. The output of the combiner Amotion is the (3DES) working Iccy as shov?n below. 



Sored «iwyi>tae! in 
Ita 1th; lie s^r 




«y bte,1bf*ife» 
required cd errata 
theprqper siieaf 



/ dixaniwi— nsvsrslofd 

.* -or trsr^niEthad 



Figure 4: The C&4 Combiner Function 
The working key bi destroyed mnntedUlely after an object in encrypted. In ««xler l5>r recipients- to 
be id?le to decrypt the object certain information b givealo them cither wilhiu an object header 
or via the member profi The random value is encrypted with a. key generated (assembled) by 
Uie credctitialfl tbe. etteryploi (creator) elects. It is importmn to titiic thai it is not possible to rco- 
reiite ilw working key solely from inihnnatioi] provided iu ih* object header. 

The we-rfcing ksy is u«d with a symmetric araypifon algorithm such a* 3 DES or a ftiiUM U.S. 
Advanced Encryption Algorithm to eacrypt tbe actual data object. Since the working key is de- 
stroyed irwnotliafcly after ^ object is encrypted, information paaattiTg to tba sp&cifie.dalft re- 
quited (which a member may or may net have in his/her profile) to reconstruct aednpfly the 
values, credentials, und dh-er functions ars radwdctJ in an encrypted, header that anyone rn tlw 
domain can open. The header- encrypting key is managed through the same distiiUitoii schcinc 
as the maintenance vahw and credential j <o.g.„ distributed Jcorn a Workgroup Administrator's 
Recount at tlie Uiogon.com server to individual workgroup members'* accounts at the same 
server), and alt can bo updated coucurremly. 

Read And ivrrlo access. ai*d the protection of the random "value are accomplished Ihrough a com- 
bixitfl km Ditrte-H£llm;ui (esvnimetrie) process ihai creates random value encryption keys. Noi - 
nwdly, symmetric key cryptography (3 DES) is used for raadoro value encryption. In tte asynv 
nietric cretentinimg process, a DiJEs-Hiltman static key pair b associated with each credential 
(pieca) Anc tins li puhhV' key of each pair is used to derive keys thai are then combined mathe- 



satm 



Page 17 



tJlogon.com 



PAGE 1 17/140 * RCVD AT 6/9/2006 1 2:43:50 AM [Eastern Daylight Time] * SVR:USPTO-E FXRF-3/9 » DN1S: 2738300 * CSID:6508531 114" DURATION (mm-ss): 80-52 



From: Leland Wiesner To: USPTO 



Date: 6/8/2006 Time: 9:43:28 PM 



Page 118 of 140 



Declaration under 37 C.F.R. § 1.131 

Applicants: William B. Sweet et al. 
Serial No.: 09/930,029 
Filed: August 14, 2001 
Docket No.: 055120-0002 

Title: METHOD AND APPARATUS FOR A WEB-BASED APPLICATION SERVICE MODEL FOR 
SECURITY MANAGEMENT 



Page 93 of 115 



CKM Technology Brief ULoj gc m OoriSd enllaJ Version 1.0 



mattcoJIyto create sufficient keying material to atc^ypt the random value. A member vvrth an 
appropriate fist ; .of Di£fie-tf£l1nnftn "pnblic k«y"-bas*d c»-edemiate tiiAy encrypt obicetfc, attd » 
member with the cwwfponcluig set of Diffie-Hellman private key^-ftascd credentials can de- 
crypt: those objects. A member with both Sets twa both reed and write access. This process results 
in other parameters I hat are afeo included in ths member*,* profile,, and an additional level of as- 
surance vvhliin die combiner funetionaliry. 

2.4.3 The CKM Header 

A CKM object bender must be arvai table to decrypt an encrypted object. The CKVLiie.ndar con- 
tains, among other tilings, the enciypted random vMue used in constructing the working fcey. 
Since tftc header is encrypted wrm a tae*dcr key known, to all in the domain, ilis header of every 
objettf encrypt ad by CKVf may be read by anyone in a wtfHk;grocip beJohg.bis: (» tJie domain Note 
that 1 be random v attic is not available 1a these without cryptographic read pennitsiom for a/7 the 
iTreH«TTlu»ls origrnalty usflVI in lHat sjwn.i.fio objiecl. encryption prowess. 

Encrypted tma>rtfce j^def Encrypting Key, wfeicb is 
distributed by Adndnislrasor ; ^nd stored In fitabar Profile 

Random Uatoe is encrypted under tte combined Credential Key; 
compone^ of vtfifcft m ^istribsitec? by the Workgroup 
Administrator, and stored in tha Member Profile 



Fife Header 



7 




Information about tbe lite contents including ts, creator; tfw CKM / 
domain and wo;fcgroup fcterrtiy and mainteriar ce tev^ creatfea <&te, / 
encfypSon algorahm trtiennafjon, digital signature, cresrJentaaJ indices.. / 

BtC / 

| .ftwidem Vafa« 1 0 1 0 1 j. .. -\ 1.0ft j 



Ff&wv S. Tht Pik fteodw c&tiPoim ifif&r motion <sbmtt ih* ftit: ahng wtth the Random Kfite; 
which tmy optionally b& Mcrypted wiih the combined cr&d&ttial fay. The hooker fs voetypatd 
with the Header Encrypting JCcy, which ail members cf tltc doMiXiri possess. 

2. dJ The CKM Object Encryption Process .__ 

With CKlvC, a fib or dociaiiestt may be encrypted with a. working key. Alternatively, a compo- 
nent: of tftaifila or document: (called an Object) may also he encrypted inside the main File with a 
working bey different from the snain flic. With traditional TKl security mettiods, data objects can 
typically bs no smaller t han an individual ftld or database view. With CKM.. however, on object, 
can be as smalt a single word within a file, or a data field witbin a database view (quay, or 
report }u This obj«ci-wiihiii-flaiK>bjeici arclitiacture places m> constraims oil en org^nrsntioirs Abil- 
ity to apply CKM technology to its natural mforntflion sqpnentetioii: — either when uSe data is at 
rest in a tietwotfc-cotinecied iiiformaticin repository, or while it is tjeirig tf&ftsp&rted across tits 
network by several iraw^on. mechanisms (each providing a secure CKM "object wrapper" 
around the object terns transported). 
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Ire thsj Jtemtei Profile- 
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In tonal cn abou: tfe 6te oorrtertfG jncUfng tfis oeator, theCKMdmram aid 
fltormafiOT, <%tal.e^ri<Uur9. credential mrtows, etc. 
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c&scsrtfed— revsr stored ftg^U^. 



CKWttfeffr&Httl 
Decryfdibfitrflhe 
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£n£r\pcetf un*» lhe :«nfc*nErdi Credential «*y. eotrpanews ef 
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Information ebc*J [be tito content! fadudLig lis creatcr, IhfsCKM^idirnaktcajd 
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_ _n <hj«t mo/ 

objects williBift. 
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i^gartf 7. ZZriS d&taitect CKM process jbt multiple objects 

With CKK. objerts can be contained within objects. This is can venwnt for several reasons: 

* When different people need :o be granted different access righis to. data objects within 
a document or database, eacfc .unique dafla group (e.g., section* williin a businesv ptan) 
pfm b? designflfc4 ns an object m*d instated within ». higher kvsl otgect (tin? bu&hras 
p_0 In t_ case, low&r kv$l object a may arranged withm 4 higher level objeci ki 
a parallel fashion. 
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When different transport mechanisms nr; used to:nv>ve a data object each nray w.ap 
the object it receives wrth its own CKM credc filial!; (e.fr, i local poifce depariiiicflt 
message, encrypted under that department's domain, then wrapped by tha FBI do- 
main on the Internet, ajid traveling over a State Department networfc, which appKes a 
Slate Department CKM credential mg and encrypt mg process,) 

Alternatively, dma objects maj- be crgaiiizcd in both hierarchical and parallel subdivi- 
sions, each architecture tracking the wiry ta which an organization perftrnm its mis- 
sion. CKM can easily Adapt Us object hierarchy lo fit almost any organization. 
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PHguraB: CKA4 object comb inations 

The CfflW Cr&d&ntteimg Process 

CKM is superior to other cryptosystems rbr; many reasons, but iht most important is that it al- 
low* difTerentiirtid rok-based ace«i» to large databases oif information. This process in initiated 
at thfi timelhtr data is cs^ier^c] hitoihe system. Foraxajnpte; m ftJarga reporting document (fite) 
with many sections,, cich section* chapter, paragraph (or word) can be crederainfed arod encrypted 
differently ham the ethers, according to the roles selected tor rcad.or rend/write access. A simple 
example of credeiiLiaKny choices for the creator is. shown below. 
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Credential Categories: 

S#:urlty Class ftlcations 

• Top Secret 

Sctool GfassITcations 

• Engrveatng 

• Agriculture; 




Ycu can cheese as many 
tferasificaFtfo'is as yotl w&h 
within a category. 



Tt»$ selection iralrK is for all 
ASsisfcatds in ftorth America n 

ite school of Eng_i»^-ring r T/ho 
rfprmtfion 

A sefection in each caiegofy 
further limit? the access to 
tins irfoivnaaton. Net 
ssJscting a class Ifleatfton 
mep/K there is noifeitertofl 
farthat category, 



•* Home Esononucs 

• Meclane 

- Law 

Management Classifications 
■*Dwm 
-» Professors * 

- Gudcata Alicia rili 
•» Rsstd art StudantB 
t Remote Sudanis 

* Circuits 10! 

-» Etfcarwwtgnetie Fields. 1 
t Thermodynamics 1 
■• Cafculus.2 

Geography CJq&sillcBtioris 

* h--stafe campus 

■f Mnrth Aru»nras 

♦ Europe 

CKM CFerfsntiaUng: Kow Object Xraatacs" Select 
Cradwitlals for the Data They Wish to Protect 

Figure 9. A simplified ax-jmple affka CKM Ci-ed&ntialing proc&is in an edttcctfonai settitfg 

Credential categories «nd clfHSifiv&tigos hrj defined by ttw Domain Authority. Note Ihd-wttiem 
tlio sit of credent ml choices, multiple classification* ad acted within a category are ORstL white 
fill Category choirs at: ANDad together cortcepuiilly to derive the credtsiifol k&ys used to ei>- 
csypi Uie random value fog, [fooprietory) AND [Esgwwermg] AND [professes QK {jraduaJe 
Assistants] AND jNaitli Ajli^iiCd]). /l^/crcxlt^tid categories incJudfcd al Iht Cr cation of the Ut- 
formation must be avail able in Ihc manber profile of anyone wishing to access that lnJonriation, 
tt" only one rcqnirsd credential category is, missing; the object will be unavailable. 

This CKM credeniiating function bruiEg two /critical feousfits to tho oececs cOnLrel pioblcui:; 

• Credentials allow role -based Access designations to 1% applied directly to a data object 
sveh lh*U access «a be coatrcllcd by the iixdeminls held in o jncmb<rr"» profile, ttirs 
eliminating the need for a penmstion-s or security server, 

■ 3y pjxrv.idmg a standardized w«y of crc*ti«g and Applying credjentiats that itiforxnirtioti 
creators be trf insd to use ct3M«?tsntry thmigfcntt a domain, CKM bring? & »gw 
standard mdh&dnlog> f TlTat substantially enhances Irtfommiiort access for organizations 
of.aJl kmch. 
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The *>bmnni Authority sets, and Worfcgroup Administrators enforce session timeouts for mem- 
bers. Based on die security risk, the maximum idle time during each CKM session may be ca> 
trally contiolled. Session timeouts arte included in each member** profile ondinsy not be res # by 
lh« member. Generally. the member is required to repeal the id^iili Iccatioji arid cwlherrtaiion 
process in wder to restart a 1 jmed-out session. 

2 AS? identification and Authentication 

Identified ion is ilie process sf identify ing.. the member. Authentication is the process of validat- 
ing i!iAt identity. CKM prtffilsB are encrypted Willi sn identity process. Iii order to access profited, 
members tnust provide proof of identity. 'Iliis -pcoaf may consist of pxieseirrtra^ "valid User Identi- 
fication (UID) along with a corral password (PIN), tt may aJse consist of presenting a bicotnetric 
scan such as facial contours, voice recognition, or lip movement While speaking 4 passphras*. 
AutheniicarJan occurs, at the workstation when valid identification is pre&emed for the proflte 
that waa mved by a Workgroup Administrator. 

A Woikgroup Administrate* creates each member'* profile. Among tba data included in each 
profile is the member "a klentifia-Jtion,. 'lite member rway not change the UID supplied by the 
WortcgroEij) Adi»mi5rtTAlor. Bach urns mi object: is endrypfed, tha identity of the prof ile. used is 
place*! in the header each recipient may verify the identity o/tho encrypt or. Trust i& assumed 

shice only a Workgroup Administrator may issue profiles and only a Workgroup Administrator 
may designate UlDfc. 

2. 4. 8 Revocation of Member Access 

Any cryptosystem must have the means to revoke a member's access. He vocation refers to pre- 
venting access to material encrypted subsequent to revocation, It doe& not refer lo preventing <tc- 

O&ss Mi ftxaittrial rtu&ypied dhWut; A n!61ttb«r'£ Jttftod uf legitimate AOOBifS. Oii&S the decision to 
revoke is .made, new aturynuun access ttenial &houH he ii» complete and rapid & security risks 
warrant. CKM has multiple jneans to revoke members, 'flic basic CKM revocation methods are 
listed btlo* : 

• Pre£i le expiration limits provide a nmtinc, periodic method of removing member aecsfis. 
just: & credit cwrds ©spire. As pwfiles expire, they may simply not be retired 

• U^dAtc4rufiinf(n«jrt^2 values elisnino'te ncc«£sto tiros* without the ttcw villus. New 
maintenance values have backward utility so thai material encrypted wilt a previous 
maintenance valucrirjay be decrypted with a subsequently issued one The DA .may 

(Hi case lo issue :t new maintenance value and not give it to certain inembeiSi thus revok- 
ing their access to ftilur* information. Ferk>dically. new maintenance root values mas be 
is&iied that do not have backward utility, thus marking the beg inn i tig of a new lime p s- 
riod. Multiple maintenance vsdiiisx and nuitliple reota allow fi;ie-tjraiti«l control over tinie 
periods. 

• MAiJitenartce valuea z&a b* need as *timo fcleaae' fiactors for time sensitive materials. For* 
cx^miplo. coarse materials may be issued to % student by an educationaJ iristiturion, and 
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new maintenance vaiiies may be issued at the beginning of each week to "unlock content 
appropriate ft* thai week's study cr resting. 

• Aii advagrt&ge of a vvub-cenlric CKM system (Ulc-goxi.ewrn) is ihsU member profiles can 
be cancelled or changed any ttms with virtually immediate dEfect. As incumbers connect to 
the central sile to v*s< their member profiles to *tcee$s old content or create new contend 
thejr credentials carl be changed front the last acccas. This facility is pnrticularly useful in 
responding to — or pie venting-- -ccrto in security attacks by o insiders and/or former 
v^orkgrwip members, since, all an Administrator to <to to forestall such attacks is can- 
cel & rogue members cradotilials. This is. a more dUltotiltprtjblchi for smart oard-based 
systems, since a rogue m ember could continue accessing, content, up until \hc credentials 
on the card tin a My time out. 

2.4.9 Key Recovery 

Key recovery refers- to th© ability to xecicare or .retrieve working keys. CKM technology is 
unique m lliaL unlike in prrvitc key csci:ow and session key escrow, CKM! does not escrow a:ry- 
Ui«iS. CKM provide^. the Dc^rr? Authority— and lc> a limited wetefl the Workgroup Admrnis- 
tratoT— witli Hie ability to resonistroct all wotting key& fbe DA created all the s>stem fceys> 
a? w<*H as all Cha credemiafc. If the hoadsr or its equivaiem is trade available to Hie OA, the 
working key can be reconstructed 

This fcey recover ability of CKM is a. critical advantage for two reasons: 

First, all oisanizaticiiM need &a ability to recover encryplsd flics when the primary encryption 
keys have been lost Wo dent high strength encryption h virtually unbreakable: so locking up 
vital intellectual properly and (hcu losing the keys means that data would he losjt forever. In 

typical commercial uax employee turnover, computer failure*, loss of to fens, and other catas- 
1roph«M hqpp«i to u «gn tfjcnnt pe?pent«s<? pf w^guizntiojw every yc pr. Thu$> it U in th# orga* 
nfeaticir 5 feast financial and security interests to have a simple weovary capability ia caao a 
workgroup tnembar loses bis Or her key CKM provides a simple key recovery capability. 

Second , modem high >irengfh symmetric encryption is subject to goverctneol control in many 
countries, la the United Stales, lbs export oi strongencryptiou is regulated, These regulations 
are continually being revised to address the demands of electronic commerce and national se- 
curity issues. TECS EC has oeea granted & unique export lloease for CKM "^echaeLogy. See 
Appendix B for more details. 

2.4 JO A Word About Dsrabasos... 

CKM usngt with normal electronic document files is fairly rtraighiforwardw Data objects nrfceav- 
copied ivith specific CKM \vorkiiis,kcya P grouped into object hierarchies and stored on nsstv/cjfc- 
tmulabte magnetic or optical storage devices Tor access by a multitude of mem bers with the ftp- 
propriifftc credcirtia]*. 

Databases, however, art another problem. Because large relational databases, need to conduct 
internal operations on the data contained within, enciyptuig e&ch field, can pose «. problem. Bcfw 
can £ database sort data, calculate indexas, oreaie cdctikfed vaiucfi (Troii) rnultlple data fields). 
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and perform ad hoc inquiries if each field is encrypted? If encrypted with CKM : how would the 
database know -what working keys to nssV Where would mch information be stored? This is a 
case where encrypting the data, for security reasons may get in Hie way of maiingisig that data 
within a relational database. 

A number of techniques have been developed to solve this problem as follows; 

* Members 35 11 ing database forjT!$ for submission <o the database do not necessarily 
need to worry abairt which credentials are to be applied to each field. Special tem- 
plates are created which prceent prcfonnatted electronic input fomre for member* 1 tt> 
key in the data. Each templars carries within it iha index \ ahiee of the preset creden- 
tials associated with each daia field. Urns, clerical staff need not even know what 
credentials are being applied — all they know is the data is entered and sent on its way 
when completed, using flieir member profiles (rod their desktop systems lo perConn 
the necessary encrypting and digital signing of objects. 

♦ CKM-cocryptcd data may be Stored directly within ihc database shticture. If it is done 
Hits way, database indexing must be simple (e g, based on serial numbers) and file 
header iiiformalion must also be kept in order For the database to decrypt data fic'jds. 
for internal tnflrnrenaitve purposes. This provides for substantial proteetictn -igainst 
hacks** that nv&hi search the magnetic or optical media, with analytical took. How- 
nvw ii inukfts- *>d hop soaroh.M of th« d*i?i diSic-uil !M» oo^iwtt 

♦ One approach is io decrypt sA\ data coming into the database and store it within the 
dalnbase structure as plain text (non-encrypled). Since all members depositing or 
viewing data nuist do so tlmmgh predetemihxd views of Ihe data thai are controlled, 
formatted end presented by view templates running on a DBMS query processor, it is 
a simple matter to include CKM encrypting and decrypting operations as a part of fbe 
database loirpfcuiiig pruu&s. Thus, whan a member najue*<3 ttspwtifiv vp$uf gf Uw 
data, die database references the template selected, reads the credectinling infoiuia- 
rion for each field, fetches tlw data ai>d enorypts it widi the appropriate- working key* 
storing the encrypted Random value within the object header hi the nvrimd fashion. 
Tho member then retrieves the CKM -encrypted data and uses his/her member profile 
k> access tfiai data for whatever job taisfc. is underway. 

* A variation on tho above approach is to use a single secret symmetric key to encrypt 
all the data in the database, taus* providing protection against hackers that might 
search the alorags medium with sophisticated analytical tenia. This insert* a decryp- 
tion/encryption ffiep into a3i database access for either internal or external we, but 
nevertheless is perfectly workable. All CKM credantiaJing nnd enciyptiiig operations 
are still handled by die tempi a ting process. 
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IX) Processor 



StiKib diJTerttm Gr^Ailizalions have different MOWSiy politics pertaining to Ihc arc&iloOliitt iind 
management of their databases, thwe aw a mirub&r of solutions — end combmdlions of solu- 
tions — available to deal wfth the d^taha&einffittienarttta problem, A number of large Federal 
agencies are currently working with the major database and template companies to perfect the 
mostopthmim ways of storing and xctrievitss CK&t-coabl&d daica to arid from Federal databases. 
Undoubtedly newer and tetter variations will continue- to evolve as Uiese orgauuaLiora gain 
more expert eri ice hi deploying CKM-etiaWed.sysieRis. 

A mc$or advantage of CKM is that mm? people with different data ascess righto may all request 
twtj (jjtetttihe Mtfiv »Km4#t4 d&tobtfst input or qntcyfottn the weftrtfrfc. Sinwdtfferv/t' 
data fields may have difpstmt credential* applied to ih&>i, onfy the information epprvprtme to 
eachmembta- made zvuitobte to thai member. This allows a iirtgte daiabajtti sysiew 10 serve 
the needs ef petextialtj thousands of peopie, each inptttting outpttiting only data rotated to 
th&ifjob roliu, brd twV? all vtetnbzrs shttritig a standcud zet ofi&nptotzd '/tonus (md thtit samt 
(non-dupiicaied) data repository. 
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$. Member Profile Storage Choices 

4 - t. The Smart Card^-A decentralized Profile Storage Scheme 
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Smart cards arc a secure and portable CXM profile storage option. They hold a member's profile 
information and the critical encryption dgarithms, and are removed from the system (card 
reader) and secured en the person when the member does not wish io be on-Kne. This makes it 
extremely difficult for attackers to liack into the security system a nee: 

• Credentials (member profile) ajid critical crypto algorithms such as sign and verify and key 
assembly {combiner) are not on the workstation or the workstation's hard drive, but on a se- 
cure Smart Token oard. 

• The necsvork has no access to the smart card i n the card reader, and if a smart card & found 
by aii sOacker, it will no! IVmciion without the member's FIN and'or biometric scan data. 

■ The card allows for portab ility and flexibil rty. A member may move from one computi rig or 
access device to another and still have appropriate access. 



Figure 13. Anexairtpfeqfasmarr card reader wtfh integral JW pad 

CrypTEC Systems anc TECSEC Incorporatcc are currently developing a secure smart card with 
enhanced storage iuad processing as w£l as turd ware random number generation capability, 
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asymmetric key pair generation, and tsmpei detection, TOs smart card is -called the Smart Token 
card. It currently u&cs a smart card micf a-ccnlrolter'wilh 32KB of EEFROM memory, 32ECBof 
ROW memory, and an attached crypto coprocessor. It will eventually usks up to- a 32-bit puocfts- 
sor and cany several megabyte* of stonigs. 'Hie crypto coprocessor performs birgc member riath 
raid hit manipulation very rapidly, substantially improving tUo processing speed of cryptographic 
algorithms. Certain areas of memory will only be readable by die card operating system, thus 
protecting keying material. Sine© Member Profiles and Hit* CKM processes that create working 
keys will rasida on ih& card, only sassiflEi logon mfcrout&n and working keys, for targe objeatn. 
iiocdio be exchanged via card I/O. Larger profile fifcs. need to be. cocimi^causd across the card 
I/O only during profile mstallutioin and activation, so theamart otrd bandwidth limitations are 
not ft ey&tecn performance factor. 

Another feature beting developed h the inclusion ftp a tuonielrtc capability. This capability with ft 
smart card would allow a high level of security with strorjg U1D, as well as the ability to state 
different types oi'mtonnatieai^boul the member in a package thai is eaay U> carry and easy to 
use. At present, several fingerpr mt devices are available on the market, as well ah facial recogni- 
tion,, speech recognition, and Hp movement recognition devices. 

4.2 Jim Iffogan com Wah S&tvicA — A CmtmH7Ad M&mMr PtaTtta Scti/una 

An alternative to the approach of utilizing smart cards and renders at each desktop to contain a 
member's profile is to pi ace thai profile on a secure web server, and access it when needed via 
ihe Imemel. WiTh this approach, ike smart card and reader may be eliminated from the system, 
and CKM: functi OEiality cntn essentially he rented on a rapmh-by-iriomh or wcek-ty-wcek basis. 

The ULosson model essentially moves Ihe smart card functions to a secure ULo£»i server, wiing 
a profile unique to the user Mid the d<dnain(&)he/ahe belongs to. 'Hie desktop slill would encrypt 
and decrypt files, and would rely upon the ULogon server for signing and verifying and al I 
working k<ry ere at tun. The serve** would hold all private keys ami i^riifictftes, the tier's CKM 
profile, including orcdoiitials, and tbo Biotitctric icniplatcs^ The acrver will havo a "member pro- 
file" for each user and adimBistrrtors will simply transmit credentials and other periodic mainte- 
nance details to inserts Mia th«Vserver*basedi«ailbt« instead of via email. Domabi at*d 
WoricgrOEip AdniimtOrators will perform their sdministnrtivc chores via connect s>n to (he 
Ul/O£on web site, instead of on their local systems, 

Since the wire connecting tbe/U Logon server-based user profile (containing the equivalent of the 

ainwL Catd) La ftoW <juitc lcaj£ (the Irti*ii^t) fcrtd Whieftibl* to fillaek, Bi0i£-HeUittaii key ex- 
change routines are used by both the server and the desktop, so the desktop and server can eac- 
diange private iiifornialioo securely, such as wodtiii&.kefys f command roqueels, message digests 
io resigned,, etc. This means that a user will need to have a reliable conneciion ti> the ULogan 
server, since e very tirac an cbject needs sigjiLng or verifying, or every time a ivotidng key needs 
to be constructed to <^«tc or access an encrypted object, tlie Mjrvei have to be engaged. IMs 
afeo jncans that if the server ot ihe j»rwarJk gecij down, the user is temporarily eia of work. 

However, there ar««0Die advantage to the centralized ULogon approac;!^ including; 
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1. Lower costs of" entry for tfie customer; instead of paying, i«y S5C-$,lG0/8cat for the 
CKM software license And $50/s cat for a CDROM, smart card and reader, the user can 
now pay a smaller tnonthly rale, say„ S8- 1 0/seat/month 

2. Mobility; A us er can now travel the web -and log in from anywlMrc. (He may nocd to 
drag * video camera and microphone aitd a CD around with him if the uses BioID, which 
uses facia J, voice attd Hp movement as biomctxic authentication, modes.') 

3. Convenience; the big expense in deploying CKM is not the cost per s&tl or lha card 
and reader, but ratltcr tfoo tramiug and systems integration wojk. necessary to setting up 
the infra *,tn i dure --^speci2lly training Dornain Authorities and Workgroup AdmtnriJra- 
lonL Thus, a central web -based approach can provide a lot of conveniciictx including.: 

• A profcssio:ial and readily Accessible training tool (access the fffee for training 
programs) 

» Ail easy way to download necessary user and administrative software modules 

• An oiisy way to set up end maintain domain and workgroup odrmnialrative func- 
tion* 

• Larger and more numerous domains and biomctric t&mplatcs can tw managed 
(no smart card memory constraints) 

- Using Bio3D r member enrollment will be much easier &ince it con be carried out 
on-line via a vidoo/«idic*'keyboard chat interview using the Bio ID for authentica- 
tion. Enroltecs oan even hold lliear passports or cfrrvers licenses up to the carasra. 

• Guest usejis and pilot iesfcs can be created overnight 

• The bureaucratic hassle associated with ttftrng up a :i ew (CKM -based) security 
accents control system within a ^aige. oompnry o?n be avoided, sin set I he wp.b- 
hosted CKM sarvice is "setfcrontamedj " easy to acquire and us a, rod oan be pur- 
chased by lower management budget authority. 

4. Beitar security 

* Using Bk>ID, users can be authenticated better (use bodi BioID and passwords for better 
security), since passwords are easier to defeat aud users can give them to each other if 
they wish 

* WcbCKM tuts substantially less potential for illegal surreptitious access to ndm inii I ra- 
ti vc systems during off hours, tetter Authentication of tiie adniinisl rater, and much re- 
duced l^iuremctits for physical security. 

* WebCKM has rapid response U> maintaining users and foiling security attacks (can 
change anyone's status immediately find thus reduce the risk <yf rogue usc + e) 

The Cetitrulixcd Smart CM Model 
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A variation on the central ixed server model is to uw smart card* or other tokens at each desktop, 
and yet require each resr to lo# in to -a central server otic* a day to be fiynchfonized with the 
centrally-maintained credentials files and to utilise the Bio ID authentication to the smart card. If 
a user has additional needs for Ulogon "a Virtual Pre a en pe or Virtual Interactivity services, then 
logging in every day vill become a normal part of lite work "schedule, 

5. The Power of CKM; Solutions 

Cryptography imd ii* related < laments are generally viawad a$ inertly a mtlity> the sol* purp^a 
of wtfiich is to provide KCCttrity and eonfidoirtialhy to data and voice- storage and tttmimmieations. 
This is mio of most cr/rtf ogranhic key management octi.onvQ and eiic^piiori software applica- 
tions. However, it is not inK for CKM. The ability to selectively encrypt objects within objects 
and the granting of rob-based itece&s 1o these objects Bets CKM apart from other key manage- 
ment methods. CKM Attributes provide Ibe b*wU for solving mnrness communication* probl ems 
in Uiiiqutly bciieficial ways. 

CKM allows for a ane-to-many distribulicu of encrypted objects where the creator does not 
kn»w tha idenlily naid r&lated access rights of the many,, including fitturA raamhet* within lltft 
domain. Tl!« provides the basis for s$cr.re broadcast of seats itiro rt?flt3]*ia!, Swf CKM ono-to- 
mariy disiribtitioniscaH.be tifedfor miinifous aoiporiitA empire, tmtfical, customtsi" 4 and ven- 
dor appltcsliocs. 

I>yn.tiulc Data Separation 

CKM separates data crvptographicolly, Gach set off credentials used within a domain separate 
tlutt data from all other data within the domain. This data .separation is enforced cryptograph »- 
oalry, and uofbty separate physical architectures. Willi CKM, data separation — tastiuttng layars, 
within, layers (objects withiii objects) — can be 4}uatiiicalLy changed to meet organizational re- 
quirim6irt i'6g$riliug irtfuiTnalioii flow and access boundaries. In *&&ncu, CKM eart provide dy- 
namic, eiyraogrsphically enforced private networks within a larger or^nizaticmal network.. 

IDislinat Separate RcttlHy 

CKM can take one or mor.e-cnicrypted objects and sticrypt them within another encrypted object. 
It is ihis otject-withm-an-pbject that provides CKM with the ability to selectively decrypt ob- 
jects according to access rights previously given to memters 

For example, management desires to post a nieioarandran to all employees oil its Intra net web- 
server. In sddkicf i, management wishes to include &ddiikfnal confidential mfornrarioii for JVUiv 
agem With CKM, tlio portion of the document intended for. all employees wonld be encrypted 
with credentials every member in the demain possesses. The portion of the document pertaining 
to management would he encrypted using a credential limited to managers. When employees 
downloaded decrypt the document, all employees would view the common itifbrutritjon. Man- 
agers would also view the restricted iofannatiott. With CKLM. ti fe possible to ha»a each member 
view an objector otjjects and not know their accessdiffm from others. 
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Flexible Role anil Rtsp<OT3iuHr|y Assignment 

CKM .and :hc Smrtrt Taken to not exist in a vacuum. Other pa its of t'ic system reside on the 
member 'a desktop cnxnpi&er, and on the [Kfmititslrmor's eotnpuier system elsewhere on tire net- 
work Servers are not required by the CKM architecture, trot the orcliitiocmrc will mxonuwxiaic 
servers easily in the system if reqairetj. 




Iltlf 



F2gpav:t?. The-tZKM seaaity layer Jbr atypical web- laxxz.d system h skvwtt above, ft consists cf 

the CKfcf mwhtfes hwtedim ihe member's pvrsw&l compttter, m* <w connections ifovugh 

the Internet to lh& Ulogpn wed site for access to the member's keys, certtficates and 'member 
profile. Another critical set <if junctions resides on the. If tegon server for the Workgroup Adnsin- 
fstratar QfidOoifttoirt Attihurilj*. 

Admmtelfialnfe (unctions may be saparaled inlo as ttony lavels as no add d for security and work- 
load needs. Organizations may continue to nse the included 3-iter system consist ing of a Domain 
Aniboriiy* Workgroup Administrators and Workgroup Members, or lliey may customize th& 
system For more or lc$* separation of functions and levels of distribution. 

Acini in i&trcuive roles and reaponslbiliiiw are not bound, a priori, lo any level or component. Lf Iho 
standard rob assignments of Domain Authority, Workgroup Administrator- and Workgroup 
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Meirbcr do iwt meet an orgnnwc^iojrs needs, applications rna> be customized ftr other assign- 
ments. Responsibilities may be moved up or down the dittribntion hierarchy, or roles may b* a&- 
tigtisA in a completely different manner. 

£ r The U. 5. Postal System and certified eiearonic matt 

*fln? U.S. Government through several Congressictnol Acte, mandated *hnt oil reqmred 
doaimciu <mbmis$ifti$ to 411 federal agaicfes muist be cJeotroiiio: by March 2003. The amicipated 
saving* to &oth £o\*!rnm<ftrw and companies are flstroflmrical *md run info the hundreds t*f Mt- 
Hons of dollais per year. However, just getting the mforxuation io the government securely is. 
only part of the probjetu. The most important part is rrialcih&that data securely and efficiently 
avoihtite to ifee people v&io must access it throughout industry juid government. 

fine United Stated Postal Service is evaluating a new secure certified electronic niaii system nor 
industry ai:d govcmnimt tlitt wall enabls Hie -subnussion of these documents electronically in 
place of tlio ocntmies-old paper method. This system has- been oallcd "cFtoof* internally, but will 
most likely have the new name of "NetPost.Ccrtify" far formal introduction (anticipated in 
Summer QfZQQQy 

ThroLrjdi itiiS Hew Certified eniai I service, a cofpbf alkui Stiidin£ ittam&ttsty datii 16 A Pedenil 
agency would do so through thelntamet .amd -a USPS smart card. A corporate member would 
topically p5ss?sstu?0 5e4s oferedent«i!$— an? for the USPS transport process ovsrttie Internet, 
and one corresponding to tiic domain of the Federal Agency Che data Is being, sent fo. Tho data 
vfoidd be brokco info objects, eacli encrypted with a working key protected by a specific set of 
cjedciitials ^socialed with iiic agency's domom. If requhed by the. agency, all objects in a par- 
lieu htr submission could be "Swapped" (encrypted) ostfin tiding a broader bYcl of credentials 
auch fhat only member* of that domain csuld open the. complete data package (some of which 
may ha ve heen designated as unoiwyptsd). The encrypted package would then be wrapped igftin 
(encrypted) Willi asrtt of working key&end credemtiais Associated with the dnd the tnJuhi- 

ply-<ttcrypled padat(*c would bo sanl to tho Federal Agcugy. 

Upon receipt of "lie data package, the agency would "open** (decrypt) the USPS wt^pper, send 
notification of receipt to a IJS PS server, winch would rchtm n date a«d tim^&wrupcd certified 
notice tobolhlhe agency and the submitting corporation (the certified emuil receipt). Upon re- 
ceipt of'lbc USPS ecrtificatiiDJ, the agency would open its domain wrapper and send tho zxt- 
cryplcd objects to wherever they need to reside within the agency for f Hither provossipg aiid 
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fofanaaSon about :ha file contents mck*g te creator, the CKM domain 
and workgnxip identify ard maintenance lavel,.oreaJion date, encryption 
ajgorilhm fciformatbn, d&tal sis rteluie, credential ind des, &e. 



Bbrmiioo about ns ie ecntenrt inbudrg its ere*/, lire tKflh do rain md wofl^nnp Htntty 
Micte^efc. 



file Header 









file HMtfer L^te^^iOl 











The USPS 
wrapper [USPS 
eralerctlals) 

(domain) 

encrypted 
objects within 
flhe information 



Figure f& J7w proposed USPS object hter&rehy for typical <hta submission to a Fectergi 

agency* 

All af tbcs« date transmission* can tafea place over the Internet as pieces of decrratiic 
mai I-— * L«idtly w iiiexpenaivcly. nod securely. 

'fh& USPS plans to charge than typical paper-based certified rami for ««?fi such transmit 

The target nwkeus ftr^bii&xtts&s-io-^ovdntmcxti, ttaiMjo^d^l-^vcritm^iit, mid fern in* &&- 
lo-busiiies&. The first major customers far the servire one: anticipated, to be ths IRS. Uie Social 

S*£iirity AHiftjiifeUistion aruKhw HftatfH Carts T^j^rtci rig A4rtv**.is!*i l SllbtL, wHmH pfOcW5*«w fvtrt^U 

eare/Medicairf data -on behalf of 75 million Ainericitns. 

The USPS — the only commercial entity in the US Ihitt can issue electronic crcttentiafa for c- 
ooxiutierce for which tlie penally far 1 airier in g is a federal fekmy — would provice and niaiii&irj 
ihe infi-astrueturc for certified email itsags, principally consisting of tlie readers and swiartxards 
and desktop software for niembzrs, as well as. the admini^lrativo CKM functionality far gavem- 
m«m agencies and coipor^ious. The USPS \vould also proyitfs the- certificate authority for issu- 
ing.G&rtifi Gates to m&mbera, as well as the smart card initialization and psxscmaliiauoufortctikfis 
necessary for registering new members -and issuing cards to Ehem. 

CKM i$ ill* rt*ii*SSAiy USPS technology thtf. jttovife the saetti* firift^f-juiid difTej artist id .a£- 
OesS to aultiOiiicd mfOritmiou Witliiil the goVtfftnt&iit and corporate worlds. StfUUl cards 
with CKM-*^bl&dfvmciiomIi.ty arc essential tonus service Ciirreirtly, ths USPS i&ncaouauug 
a mnUi-yeftr ooTttrftct-wilh TECSEC to design and tmplfim&nl tltc tiew secure electronic USPS 
system xisins CKM lechnolofiy. 
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Smart Token™ Card 



Fi&we Tte USPS &snifi4d email w*dd datiw&mti* certified enuril. to g&Vdrrim&il 
getter fts drat? miiifrt a rec&pt of delivery. 

Whcr fiovcrmnent agencies arc also cvnhtfttfcig the ^ctPaat .Certify" &y ate in crw trnic for their 
document mbmittiortis from the commercial world. 

Otibefhe mdustry-to-govgnmient and governmftntoG-gtivernitKiJl document transfer system is up 
mid tanning, the USPS could take this servi ce to the worlA.as a corapjuiy-to-comnpiiny service, 
raid ultimately as a ooiisuraw-tp^cwisiwww* service Other post office agendas in mrtny couimes 
are already tnienssted in adopting this technology, and many may follow the USPS's lead and of- 
fer similar or statical services in Iheir countries. Since CKM crypto is exportable around His 
world, there: should be no legal or national security issues involved in rapidly expanding 
USPS/CKM lecSinology to ifte rest of ths world. ObviouaJy, adoption of this OKM-enabled tech- 
nology by the world's po&t offices would estnMUb CKM as * di facto as well a? official standard 
for sdcittA exportable, c&rtilied Acces to InTotnixtiAB. 

6. Conclusion 

CKM is a. powerful key management technology that has substantial advantages over other rtxjrro 
cocivcntioriQl key management systems. CKM is flexible and way exist with and tec the strong, 
nttritntes of public key inirwrtnicttires. such on identification aitd autheotication, tofunn a supe- 
rior cornbir*^ jqsy management arid et^pl ion system, 

CI<M hf ij^sUl3s.EAiitiil atlv Intakes to <ir^i?jlioris ; including 
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• Distributed role -based access control: CK3VI T s distributed role-based access control, onc- 
to-maay distribution and data separation characteristics allow organizations to tailor xhctr 
crypto security to surtfhe way the ir information is created, distributed, consumed and 
stored — a. much better solution tfuui the centralized, one-to-one nature of traditional pub- 
lic toey cryptosysiems, 

• fine-grained access: CKM allovfs documents and files 1o be split up into separate objects, 
and objects may have other objects within them. This capability allows different part) of 
a document or file to each rc^nito different credcrfliafej for access and thus a| lows organi 
ZatiOiiS to precisely flap iiifonnfcbOrt aoocSs to the Way in which tha iilforinaitart ft&liirally 
£lo>vs within the day-to-daywor"jcflow. 

• Key re cowry ; CKM 's architecture makes ft possible For Domain Anf horitics to provide 
a&cegs to decrypted £Ues for which the key values have been lost by members. This has 
two benefits: (1) organizations can encrypt itoeir critical inform ation without fear of loss 
due to lost keys; and (2) CKM satis tics the emergency access needs of criminal investi- 
gation and uatiotinl security authorities (a ccurt order can compel a workgroup atiniiiiis- 
iraior to recreate Ihe necessary keys), and ia thus tasily ax portable arounc tl» world. 

* Versatility: CKM h ^vtrenwly flexible, ftnd is compnriibte with trudif joei«1 public key m- 
frajtxnctui^s, mid can bo implemented with smart cards to hold member profile** or with 
a WebCKM server (Ulogoa. war.). Alter«n'Hv*i1y i , OKJWCcmw bp u^vt withr.iit n PKl, *«d 
still remain flexible and sea labia 

* Industry standard; CKM is an AM SI slarrdardj and may soon be deployed by Ihe 
US Postal Service for a new secure certified electronic mail system that v/Ul be used by 
governmsm and industry to enable v\k paperless cocwrwnicatiQm Since postal systems 
mnat be compatible around the world, other nations, way also be adopting CKM-based 
dwtivnkpwlal varices. Tim would niiibCKM « worldwide <J<f fado slaiKfgrd that will 
insure its presence frr some time to comes. 

* Performance and Scalability - Public key crypto hfs a debilitating effsct on a computer 
perforrnaiKe, and centralized seoirityVpenms^ns servers typically and up becoinirja re- 
source intensive bottlenecks, as well as single points of faint CKM's crypto uses public 
key crypto very spatiusly, and fbe normal synnoclric working hey encryption processing 
is executed on the rodrabers" desktop computer, and not on a centralized security or per- 
missions server. This, means that CKM crypco is hundreds of limes faster than traditional, 
public key-based crypto systema, njid pexforroance boUleaecks are not likely to appear in 
the system, no matter how large it become*. 

A fkKibla My mmjagementarchrteeture would ideally st^jport symmetric encryption, Public Key 
tnfrajrtruetiires, and CKM. These three tsehnoiogisc, blended together properly, can meet all of 
tlie rcquircfrjculs of secure el^tronic commerce around (he workl Tliis kind of encryption can 

affectively dildr*£& cinei j^irtfc, priv&ey atid liability iizubt, TUft etot*d doittaiii iVitiil-o -Of art fcCtaV 

lishei CKM encryption boundary within a biwinesB interest can separate data effectively and 
easily delineate liability. 
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A business cati new select ksy management twethooa that more closciy reflect their aecurity 
needs. The response to these demaiwts focuses niofc collecting the -^op^ mix rAtlKr than se- 
lecting between competing eitttyptiou technologies. 

Th© rln^gramcd, obj&rt-bascd encryption capability of CKM provides confidentiality to. the mil- 
lions of objects in an <u$«ni£aliprial database otinfirnnation,. .and allows krge ox^anizfltigjts to 
put their jnisstcn-crxltcaJ infomiation assets dli-ccrtly on ihc network for even more efficient ac- 
cess by tbeir dimtsancfc of employe ca. partners, vendors and cn&tomcrs. This latum qIJovvs a 
oooiplclc scoring of the tepoiidcncc on papsr-bascd mfownfltioti transmittal and storage which 
in lum will final iy lead us into a true electronic oon^metto future. 
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RFC S»f • FKvS T, <Sw«a«^«r}R^i»«iir.hni VKrtn {,3 ft' 
It SB . TIM DtrKMTy, AJOutfSai&ft nWMfKlflU 

XB fl -JTcorjqid k-dftilifc blattagg Atrfhttfeftlbfl lYftntoeis} 

nw .rw»nd*inUtfcr<*> R*MiWt«*Jr.» «Awh«VA 

n » - Ffcareffi SHtictt AtUJ n^Mns?!Ksc) 

XBM-rittntol BMW 40 S1^iAUt«nl)tfcnftrWbakM(S WwtialSttua** 

nxri • pjt (^c^a^BBWW^'Tcntriw* «wt9!t»j or RcErsnarvbar 
»4I • ***** 3infc»;14vniwr*ii* Ibr )h» FfescU r^itrr 

Eunwoc wwtoertwt oaara&lAfcflAflfSii&CBiiaMt 
. atxuti RpratM eew* »fw»cjo gtMsa »cx«o Fiftn«w newiy 
' TrtaaDtiia ErttfA4opA$oniKisM3dDS d QpoaiOB 

■ f-efn: rt« <»niQSntK* to lha FducaM sewt* JcAaw CMMct* Ua /?a*«*fl 
' f«ts FirtWda £&Mets uttefay; tatMfl SbsM SoajuPajperi Qbpat 
%Bf /jiM«»t »3 Kb? J^apnntllMnjEltfcCw* -Gasod Qr?pKaiipiy 
Trtffb CCA Irtfrbwirtoirtw 

o$rai cfrtfisatt tart^a RswAadBft wwma rowtfai stum 

■ cy**jaftfe.&>y OMaitfarcwfcj en* Kbr 



aa- 



AcroTiyms; 



CftA^ Dai* Ewryttoi^tesittw 



PKK - imd Pi bin Kttr lrtm»wsti«> 

SET- 5«md Cleimnh-Tflir»«s<b< 

3-BTTF - Skito (imiTuilVtttifti Ptdbesl 
33L -^icnrt Sftfikdt lav*f 




5/21/00 



Page 39 



Ulogon.com 



PAGE 139/140* RCVD AT 6/9/2006 12:43:50 AM [Eastern Daylight Time] ■ SVR:USPTO-EFXRF-3/9 * ONIS : 2738300 * CSID:6S08531 114- DURATION (mm-ss):80-52 



From: Letand Wiesner To: USPTO 



Date: 6/8/2006 Time: 9:43:28 PM 



Page 140 of 140 



Declaration under 37C.F.R. § 1.131 

Applicants: William B. Sweet et al. 
Serial No.: 09/930,029 
Filed: August 14, 2001 
Docket No.: 055120-0002 

Title: METHOD AND APPARATUS FOR A WEB-BASED APPLICATION SERVICE MODEL FOR 
SECURITY MANAGEMENT 



Th& White Hoiise recently announced £ relaxation cf US ajeryption export policy. Although 
specific rc^uiottous hnvc t>oc been issued, the following mica wio anticipated: 

After a Ottfc liine review mi Approval, "ionimeFCiar tstOitptkni products With italy key length 
may be exported wlhout restriction to customers in moat countries. Tbers ore some restricted 
omtnlry deslinatksnsi mostly fortialionaJ security reasons. Ait annual repotting tc (he US De- 
partment cf Commerce fating the identity of foreign, purchasers may be required. Sec the Do- 
partm^irt cf Commerce, Bureau oif Eiq>crt Caninrf, 

http ^'/ivffw. lixn.Joc.go v^Entryption/Dgfatilt Jrtm qjj the w<»t> for ;ftntfc$r detai |, 

Since CKM encryption technology features 1G0% key recovery by the system owner, TESCEC 
has fceen panted mi uiiresfry-'led osporl license for its CKM-20!X) product line — sxcept to pro- 
hibit^ ooc ntiy 4esrlniiHosu. TEC&ECs CKM-200C family of produ ct$ nse*Tripie DBS ajgo- 
rUliius aad Up to 392-bit (sytnirietric) key lerigth. Based on CKM's 1 00% key r£eo vctfy leaUffe, it 
» believed thai Piiturc CKM products* ntrcr one-tiiils jwodnct reviews, tnay be exported with any 
key length and .any algorithm. 
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